Skip to content

Кодировщики и крипто

Создатель JWT (HS256)

Sign a JWT with HMAC-SHA256 — in your browser.

Runs in your browser

Примечание редактора

Understanding · A signature, not a secret.

Эта углублённая глава пока доступна только на английском языке. Инструмент конвертации выше работает на вашем языке; развёрнутая статья ещё не переведена.

Часто задаваемые вопросы

Quick answers.

Is my secret key safe?

Yes. The hashing and signature generation take place entirely within your browser using the Web Crypto API. Your secret key is never sent to our servers.

What is HS256?

HS256 stands for HMAC with SHA-256. It is a symmetric signing algorithm, meaning the same secret key is used to both create the signature and verify it later.

Why is the output divided into three parts?

A JWT consists of a header, a payload, and a signature, each separated by a dot. They are Base64Url encoded to ensure they can be safely transmitted in HTTP headers or URLs.

Can I use this for production tokens?

While technically valid, this tool is intended for debugging and development testing. For production environments, you should use standard libraries to automate token generation within your application code.

Люди также ищут

Связанные инструменты

More in this room.

Смотреть все в Кодировщики и крипто