fa

بازرس JWT

توکن‌های JSON Web Token را رمزگشایی کنید و هدر، محموله و امضا را بررسی کنید.⌘⏎ run · ⇧⌘C copy · ⎋ reset
INPUTالگوریتم مورد انتظار
این فیلد فقط زمانی ظاهر می‌شود که الگوریتم HMAC انتخاب شود.
OUTPUT
❯ _یک عملیات را اجرا کنید تا نتایج اینجا نمایش داده شود.then press ⌘⏎
ADSponsored

What is بازرس JWT?

The JWT Inspector splits a JSON Web Token into its header, payload and signature, base64url-decodes the parts and shows every claim in readable form with humanized timestamps. Decoding happens entirely in your browser, so it is safe to inspect real tokens — nothing is transmitted. It is the fastest way to see what is inside a token when debugging auth.

How to use it

  1. 01Paste the full token (header.payload.signature).
  2. 02Read the decoded header and payload claims.
  3. 03Check iat/exp/nbf, shown as real dates.

FAQ

Is it safe to paste a real token?

Yes — decoding is local to your browser. Still avoid sharing a permalink of a live token.

Does it verify the signature?

It decodes and shows the claims; verifying requires the signing secret or public key.

What does "exp" mean?

The expiry time — after it, the token should be rejected. It is shown as a human-readable date.

مثال‌ها

Decode the default token{ "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkFseSIsImlhdCI6MTcxMjUwMDAwMH0.x" }

Related tools