Back to tools

JWT Structure

A JWT (JSON Web Token) consists of three parts separated by dots:

header.payload.signature

eyJhbGciOi... .eyJzdWIi... .SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c

Header

Contains the signing algorithm (typ, alg) and token type.

Payload

Contains the claims (assertions) with user data.

Signature

Digital signature that verifies token authenticity.

Common Claims

  • iss - Token issuer
  • sub - Subject (user)
  • aud - Audience
  • exp - Expiration time
  • iat - Issued at
  • nbf - Not before