About The JWT Timeline Inspector

JWT Timeline Inspector decodes a JWT header and payload to summarize timeline claims such as iat, nbf, and exp. It helps debug token lifetime, expiry, and clock-skew problems.

Inspection runs locally in your browser and does not verify the token signature. Use JWT Verifier when you need to establish trust before relying on claims.

How to Inspect JWT Timelines Online

1. Paste a JWT into the token input.
2. Click Inspect JWT Timeline.
3. Review issued-at, not-before, expiration, issuer, audience, and subject details.

Choosing Options Correctly

This tool has no verification options. Treat the output as decoded data only until the JWT signature is verified by a trusted process.

Common Use Cases

• Debugging expired tokens or premature rejection.
• Checking clock-skew behavior around nbf and exp.
• Documenting auth lifecycle examples for API support.

Quick FAQ

Does this verify the signature?
No. It inspects time-related claims. Use a JWT verifier to check the signature and issuer requirements.

Why is a token rejected before expiry?
The not-before, issued-at, clock skew, issuer policy, audience, or revocation rules can reject a token before exp.

Can this check refresh-token policy?
Only partially. Refresh-token rules are usually server-side and may not be visible in the access token claims.

Should I paste live tokens?
Avoid pasting live bearer tokens. Use test tokens or redact sensitive claim values.