Decode and inspect JWT tokens — header, payload, and signature
粘贴 JWT TokenPaste JWT Token
Header · Base64URL JSON
Payload · Claims
Signature
💡 仅解码 · 无法验证签名💡 Decode Only · Cannot Verify Signature
此工具仅用于解码和查看 JWT 内容,不验证签名。
不要向任何网站分享您的真实 JWT Token。
常见 Claims:iss 签发者、sub 主题、exp 过期时间、iat 签发时间。
This tool only decodes and displays JWT content, it does NOT verify signatures.
Never share your real JWT tokens with anyone.
Common Claims: iss issuer, sub subject, exp expiration, iat issued at.
How to Use This Tool使用说明
Paste your JWT (JSON Web Token) string into the input field.
The tool automatically decodes and displays the Header and Payload sections in formatted JSON.
Key claims like iss (issuer), exp (expiration), sub (subject), and iat (issued at) are highlighted.
If the token has an expiration time, the tool shows whether it is expired or still valid.
The Signature section is displayed but not verified (verification requires a secret key).
将 JWT(JSON Web Token)字符串粘贴到输入框中。
工具自动解码并以格式化 JSON 显示 Header 和 Payload 部分。
关键声明如 iss(签发者)、exp(过期时间)、sub(主题)、iat(签发时间)会高亮显示。
如果令牌有过期时间,工具会显示是否已过期或仍然有效。
Signature 部分会显示但不验证(验证需要密钥)。
Frequently Asked Questions常见问题
What is a JWT? — A JSON Web Token is a compact, URL-safe token that consists of three parts: Header (algorithm and token type), Payload (claims/data), and Signature (verification). It is widely used for authentication in web applications.
Can you verify the signature? — This decoder displays the signature but does not verify it, as verification requires the server-side secret key. For verification, use server-side libraries.
What do common claims mean? — sub = subject (user ID), iss = issuer, aud = audience, exp = expiration time, iat = issued at, nbf = not before.
什么是 JWT? — JWT(JSON Web Token)是一种紧凑的 URL 安全令牌,由三部分组成:Header(算法和令牌类型)、Payload(声明/数据)和 Signature(签名验证)。广泛应用于 Web 应用的身份认证。