{"header":{"alg":"HS256","typ":"JWT"},"payload":{"sub":"1234567890","name":"John Doe","iat":1516239022},"claims":{"issued_at":"2018-01-18T01:30:22.000Z"},"algorithm":"HS256"}
curl --location --request POST 'https://zylalabs.com/api/13166/token+decoder+and+verifier+api/26712/decode+a+token' --header 'Authorization: Bearer YOUR_API_KEY'
--data-raw '{"token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c"}'
注册后,每个开发者都会被分配一个个人 API 访问密钥,这是一个唯一的字母和数字组合,用于访问我们的 API 端点。要使用 Token Decoder and Verifier API 进行身份验证,只需在 Authorization 标头中包含您的 bearer token。
| 标头 | 描述 |
|---|---|
授权
|
必需
应为 Bearer access_key. 订阅后,请查看上方的"您的 API 访问密钥"。
|
无长期承诺。随时升级、降级或取消。 免费试用包括最多 50 个请求。
(年度计费可节省 2 个月 🎉)
领先企业的信赖之选
Inspect and verify signed web tokens without local tooling. The decode endpoint opens any token into its header, payload and time claim checks; the verify endpoint also validates the signature with your shared secret or public key.
Useful for debugging sign-in and single sign-on issues, verifying webhook and partner tokens, inspecting third party tokens during integrations, and checks in delivery pipelines.
解码端点返回令牌的头部 载荷 和时间声明检查 包括过期时间 不早于和发行时间 验证端点还确认令牌的签名有效性 使用共享密钥或公钥
Key fields in the Decode response include "header" (algorithm and type), "payload" (user data), "claims" (time-related claims), and "algorithm" (the signature algorithm used). Each field provides essential information about the token's structure and validity.
The response data is structured in JSON format, with distinct sections for "header," "payload," and "claims." Each section contains relevant information, making it easy to parse and understand the token's components and their meanings.
The Decode endpoint provides information about the token's structure and claims, while the Verify endpoint offers insights into the token's signature validity. This includes details on the algorithm used and the results of the signature check.
用户可以通过指定他们希望解码或验证的令牌来自定义请求 API处理提供的令牌并根据其内容和选择的端点返回相关信息
典型的用例包括调试登录问题 验证 webhook 令牌 在集成过程中检查第三方令牌 以及确保在交付管道中令牌的有效性 这有助于维护安全可靠的身份验证过程
Data accuracy is maintained by processing tokens in memory without storage, ensuring that only the most current and relevant information is evaluated. The API also supports multiple algorithms, allowing for robust verification methods.
Users can expect standard patterns in the token structure, such as consistent header fields (e.g., "alg" and "typ") and payload fields (e.g., "sub" and "iat"). Time claims will typically include "exp," "nbf," and "iat," providing a clear timeline of token validity.