FreeDev Tools

JWT Signature Verifier

Verify HS256/HS384/HS512 JWT signatures with your secret and inspect the claims.

Runs locally in your browser. Your input is not uploaded.

How to Use

  1. 1

    Paste the JWT

    The header, payload, and time claims decode immediately.

  2. 2

    Enter the secret

    The HMAC signature is recomputed and compared.

  3. 3

    Read the verdict

    VALID means the secret matches; INVALID means wrong secret or tampering.

Frequently Asked Questions

Paste the token and enter the shared secret — the tool recomputes the HMAC (HS256, HS384, or HS512 per the header) and tells you whether the signature matches, plus decodes the header and payload.