JWT Decoder

Decode JSON Web Tokens and inspect the header and payload without verifying the signature. Paste a JWT from OAuth, API auth, or debugging logs to read claims locally.


Paste a JWT above to decode.

Frequently Asked Questions

Does this verify the JWT signature?

No. This tool only decodes the header and payload. Always verify signatures on your server.

What JWT formats work?

Standard three-part JWTs with Base64url-encoded header and payload segments.

Are my tokens stored?

No. Decoding runs entirely in your browser. Tokens never leave your device.

Can I decode expired tokens?

Yes. Expiration (exp) is shown in the payload but not enforced here.

Is this tool free and does it work on mobile?

Yes on both counts. The JWT Decoder on draft21 is completely free with no sign-up required and works on all devices.

Related Tools

Base64 DecoderDecode Base64 strings used in tokens.JSON FormatterFormat decoded JSON claims.JSON ValidatorValidate JSON claim payloads.UUID ValidatorValidate UUID values in JWT claims.Timestamp ConverterConvert JWT exp timestamps to dates.Developer & Web UtilitiesBrowse all developer and web utility tools on draft21.