JWT Decoder - Decoding Digital Anomalies

JWT to decode or sign:

Sign

Header JSON

Payload JSON

Algorithm

Shared secret (HS256/384/512)

About JSON Web Tokens

JSON Web Tokens (JWT) are a compact, URL-safe way to represent claims between two parties. The token is three base64url segments — header, payload, and signature — separated by dots.

The header identifies the signing algorithm. The payload carries the claims (who, what, when). The signature is computed over the first two segments using the algorithm from the header and a shared secret (HS*) or private key (RS*/ES*).

JWTs are not encrypted — anyone with the token can read the header and payload. Confidentiality must come from transport security (TLS) or from using an encrypted variant (JWE).