ToolHive

JWT Generator for HS256 Tokens

Create HS256 test JWT tokens with custom claims, preview the header and payload, and keep the whole workflow local to your browser.

jwt generatorcreate jwths256 jwtjson web token generator

Interactive Generator

Header JSON
Payload JSON
Quick claim helpers
Signing Secret
Local HS256 testing workflow
This tool generates HS256 tokens in your browser only. It is designed for development and testing workflows, not production signing or RS256/ES256 key management.
Generated JWT
Add a secret and valid JSON to generate the token.
Header & Payload Preview
Header
{
  "alg": "HS256",
  "typ": "JWT"
}

Payload
{
  "sub": "123",
  "role": "admin"
}

Intro

This JWT generator helps you build HS256 tokens for local testing, debugging, demos, and API development without leaving the browser.

You can customize the header, payload, and signing secret, then copy the generated token and immediately compare it with the matching decoder output.

How to use

  1. Edit header and payload
    Provide valid JSON for the JWT header and payload fields.
  2. Add a signing secret
    Enter the secret used to create the HS256 signature.
  3. Generate and copy the token
    Create the JWT locally, then copy it into your API test flow or the JWT decoder tool.

Examples

Create a development token
Useful for local API testing with standard claims.
Input
Header: {"alg":"HS256","typ":"JWT"}
Payload: {"sub":"123","role":"admin","iat":1700000000,"exp":1700003600,"iss":"https://example.com"}
Secret: dev-secret
Output
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9....
Token with expiration
Generate a JWT with exp and iat claims for time-bounded access.
Input
{"sub":"user_123","exp":1700000000,"iat":1699999000}
Output
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIi...

FAQ

What algorithm does this JWT generator support?

This version is intentionally focused on HS256 so the tool stays simple, predictable, and fully browser-based for common development use cases.

Does this tool verify existing tokens or support RS256?

No. This page is for generating HS256 tokens locally. If you need to inspect a token, use the JWT Decoder. If you need asymmetric signing such as RS256, that is outside the scope of this lightweight browser tool.

Is the secret sent anywhere?

No. The token is generated locally in your browser, so the secret and payload stay on your device during testing.

Related tools

Related guides

  • No related guides in the current seed set.