#security
How to read a JWT (without verifying it)
A JWT is not encrypted. Its header and payload are just base64url and anyone can read them. Here's how, and what decoding does not prove.
Daniel Raja
Software engineer and technical writer
Guides on jwt
In-depth, practical guides tagged jwt.