fact_check
JWT Verify (HS256)
Verify JWT token signatures using HS256 secret. Validate token authenticity and integrity.
Verify JWT
Validate HS256 Signature
fact_check
Enter a JWT token and secret key, then click Verify
Verification Process
1
Parse TokenSplit into header, payload, signature
2
Compute SignatureHMAC-SHA256(header.payload, secret)
3
CompareCheck if signatures match
shield
Verification ensures the token was created with the correct secret and has not been modified.
About JWT Verification
JWT verification confirms that a token was signed with a specific secret key and has not been altered. For HS256 tokens, the verifier must have the same secret key that was used to sign the token.
- Verification proves token authenticity and integrity
- A valid signature means the token was created by someone with the secret
- Always verify tokens before trusting their payload
- Check expiration and other claims after signature validation
- All verification happens locally in your browser