</>DevTools

SGNJWT Token Generator

Generate signed JWT tokens with HS256 from a JSON payload and secret

HS256
HMAC-SHA256 (symmetric)
Recommended: a random string of at least 256 bits (32 bytes).

JWT Generator Guide

JWT Generator takes any JSON payload plus a secret and produces a JWT signed with HS256. Use it to script auth flow tests, prepare Authorization headers for Postman/cURL, or reproduce expiration edge cases. All signing happens in-browser via the Web Crypto API (jose), so your secret never leaves the page.

Payload Tips

  • sub: subject (e.g., user ID)
  • iat: issued at (Unix seconds)
  • exp: expiration (Unix seconds). Omitted = never expires.
  • aud, iss: audience and issuer
  • Custom claims are fine (e.g., role, tenantId)

How to Verify

  1. Copy the generated JWT.
  2. Paste it into the JWT Decoder to inspect header, payload, and expiration.
  3. On your server, verify the signature with the same secret.

⚠️ Note: JWT is a signature, not encryption. The payload is decodable by anyone — never include passwords or sensitive data.

🔗Related Tools🔐 Crypto / Security

#
Hash Generator
Generate MD5, SHA-256, SHA-512 hashes
JWT
JWT Decoder
Decode and inspect JWT tokens
***
Password Generator
Generate secure random passwords
STR
Password Strength Meter
Measure password strength with zxcvbn — entropy, crack time estimate, and suggestions, all in-browser