- JWT (JSON Web Token) is an open standard (RFC 7519) that defines a compact, self-contained way for securely transmitting information between parties as a JSON object.
- JWT consists of three parts separated by dots (.): Header, Payload, and Signature.
- Header typically contains the type of token (JWT) and the signing algorithm (such as HMAC SHA256 or RSA).
- Payload contains claims, which are statements about an entity (typically, the user) and additional data.
- Supported Formats:
- Pure JWT format:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...
- Bearer format:
Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...
- Tool automatically detects and removes "Bearer " prefix (case insensitive)
- Common Standard Claims:
- iss (issuer):Issuer
- exp (expiration time):Expiration Time
- sub (subject):Subject
- aud (audience):Audience
- iat (issued at):Issued At
- nbf (not before):Not Before
- This tool only parses JWT and does not verify signature validity.