100% client-side — your token never leaves the browser.
Header
Payload
Signature
Not verified
Standard Claims