CodeNeat

JWT Decoder for API Debugging

Your data never leaves your browser

When your API returns 401/403, decode the JWT to find the problem.

Example

[Paste JWT from Authorization header]
Try Jwt Decoder Now

Tips

  1. 1Check exp first (most common).
  2. 2Verify aud matches.
  3. 3Compare iss with expectations.

Frequently Asked Questions

401 steps?

1) expired? 2) audience? 3) issuer? 4) scopes?

Signature invalid?

Wrong key, algorithm, or modified token.

From headers?

Copy from Authorization: Bearer.