- What does a JWT decoder do?
- A JWT decoder parses the token into its three parts (header, payload, and signature) and displays the decoded contents of the header and payload in a readable format.
- Do I need a secret key to decode a JWT?
- No, JWT tokens can be decoded without a secret key. However, decoding doesn't verify the token's authenticity - use our JWT Verifier for that.
- What information can I see in a decoded JWT?
- You can see the header (which includes the algorithm used), and the payload (which contains the claims). The signature remains encoded as it's a hash.
- Can I decode an expired JWT?
- Yes, you can decode expired tokens. Decoding only shows the token's contents and doesn't check its validity.
- Is JWT decoding secure?
- Yes, decoding is performed entirely in your browser. Your tokens never leave your device.