Free JWT Claims Payload Structure

The unencrypted data layer of JSON Web Tokens.

What are JWT Claims?

A JSON Web Token (JWT) is composed of three parts: Header, Payload, and Signature. The Payload contains "claims", which are statements about an entity (typically, the user) and additional metadata. They are represented as a base-64 encoded JSON string object.

Types of Claims

Registered Claims: Standardized data like `iss` (issuer), `exp` (expiration time), and `sub` (subject).
Public Claims: Custom claims defined by the application layer that should be collision-resistant.
Private Claims: Custom claims agreed upon to share information specifically between the producer and consumer.

Decoding Security

Because JWT payloads are only encoded (not encrypted), they can be read by anyone handling the token. Therefore, developers seeking to decode JWT token online securely local offline use our 100% client-side decoding environments, guaranteeing sensitive token payloads never traverse a logging or remote collection server.

Apply this concept instantly

Experience zero-server, 100% client-side execution with our free privacy-first tool:

Open Data Encoder & Hash Lab ›