JWT Editor (JSON WEB TOKEN): Online, free and easy to use

Our online JWT editor allows you to visualize, modify, decode and verify JSON Web Token tokens instantly.

The token decoder we provide is a very practical, easy and fast tool to use, with no cost and no registration required.

Decode&Edit JWT Features

What can you achieve using the Decode&Edit JWT Tool?

Edit, validate or create new tokens. You can decode any JSON token, getting its parts to modify them. However, the tool also allows you to create a new token if you directly enter the information you want in each field. As a novelty, if you have access to the Secret, you can validate it.
Edit JWT without errors. By breaking down the token parts, the tool ensures you know what you're working on, which exact part you're editing and what you're writing in its place.
Instant decoding and validation. You can work with your tokens immediately; you don't even need to press buttons. We work with reactive programming, so you don't have to wait. You also don't have to waste time giving us your data.
Easy to understand and use interface. We provide a very intuitive and simple structured environment to modify each of the parts that make up a token or to create one from scratch.
Decode tokens securely and anonymously. We don't save your information or consult it in real time. You also don't have to register or give us personal information. You enter, work with your token, close the window and your trace disappears from our site.

How to use our JWT editor?

The interface of our JWT generator allows you to edit and even create tokens very easily.

You'll find a field to enter your token. On the right, three fields to work separately on its Header, PayLoad and Secret.

Enter the token in its field. Immediately the tool identifies and separates each of its parts (in three boxes). ATTENTION! The Secret of the entered token will never be visible but you can change it.
Now you can work on the part you want to modify, simply by typing in the corresponding field.
You'll see that the complete token is modified at the same time (in the first field). Once you modify the parts, the final result will be valid.
Copy your new edited token. You can do it with CTRL + C or simply by clicking the sticky note icon available in the field itself, next to the token.

What is a JWT and what is it used for?

A JSON Web Token is a compact and secure format for transmitting information between parties. It's essential in authentication systems, authorization, session control and secure data transfer.

It consists of three parts: the header, the body or payload and the signature or secret. On this subject, a couple of important points:

It's important to verify the expiration date and keep it correct when editing the token or incompatibilities or usage problems may arise.
The signature of a token won't be visible to you, you can change it by creating your own or verify it if you know it.

Why edit JSON tokens?

The usefulness of this JWT editing tool lies in the fact that you can:

Modify payload data without reconstructing a token from scratch.
Update the signature as many times as desired, allowing token recycling.
Correct errors, both in the token structure and in the content itself.
Perform development tests in secure environments.
Generate custom tokens for specific processes.

We encourage you to try the JWT decoder online right now!

Frequently Asked Questions

What data can I store in the payload of a JWT?

You can enter any information as long as it's in JSON format: dates, identifiers, user roles, permissions...

As advice, don't include sensitive data without additional encryption, since the token body can be read even if it's signed.

Do I need a key to verify a JWT?

Yes, it doesn't matter if it's a secret or public key but you must have it to perform verification. However, it's not necessary if you're going to modify the signature.

What happens if I forget to update the token signature when I modify it?

When a signature is not updated, the JWT becomes invalid for security reasons. After each change, you must update it for the token to be verified.

How can I know if a JSON token is still valid?

The payload contains this information. Look for the "exp" expression to know the expiration date (expressed in seconds and indicates how long the token is valid). This must be later than the day you perform the verification.

What's the difference between verifying and decoding JWT?

Decoding is nothing more than reading the JWT content. Verification involves checking if the signature matches the information, using the corresponding key. This ensures data integrity and authenticity.

Can I generate a token from scratch with this JWT editing tool?

Although it's designed to edit existing tokens without errors, of course, you can create your own. You just need to fill in the three fields that make up the token information (header, body and signature).

What do I need to edit my tokens with this tool?

Nothing more than the token. Once entered, we break it down and you can edit it as you wish from your device.

Is it safe to use JWT Editor online here?

Of course. Your information is not stored; the moment you make a change with the tool, the previous one disappears. In fact, we also don't ask for registration data or store other information like your device or connection information; nothing.