JWT Generator

Sign JSON Web Tokens with HS256, HS384, or HS512 in your browser. Free, private, runs in your browser.

Header

alg and typ are added automatically — only set extras like kid.

Payload

Standard claims: sub, iss, aud, iat, exp, nbf, jti.

Secret

Algorithm

Signed JWT

—

Verify a token you generated here in the JWT Decoder. Only HMAC-based algorithms are supported in-browser; RS/ES variants need a private key server-side.

Anyone with the secret can sign valid tokens. Treat it like a password and never embed a real production secret in client code.