Security
解码 JWT Header/Payload,校验 HS256 或 RS256 签名,并检查算法、过期时间与敏感 claim 风险
用三种语言从你的代码中调用此工具。
curl -X POST 'https://api.elysiatools.com/zh/api/tools/jwt-decoder-security-auditor' \
-H 'Content-Type: application/json' \
-d '{"jwtToken":"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjMiLCJyb2xlIjoidXNlciIsImVtYWlsIjoidXNlckBleGFtcGxlLmNvbSIsImV4cCI6MjAwMDAwMDAwMH0.0jVQ4ZJ1vF6K_6n0Xm2jtfwIY3PrM6t5Z2iB4Wn7s0w","hmacSecret":"super-secret-demo-key","rsaPublicKey":"-----BEGIN PUBLIC KEY-----"}'以 JSON 形式 POST 提交输入参数。文件类型参数需先单独上传。
POST https://api.elysiatools.com/zh/api/tools/jwt-decoder-security-auditor| 参数名 | 类型 | 必填 | 说明 |
|---|---|---|---|
| jwtToken | textarea | 否 | — |
| hmacSecret | text | 否 | — |
| rsaPublicKey | textarea | 否 | — |
HTML 结果
{
"result": "<div>Processed HTML content</div>",
"error": "Error message (optional)",
"message": "Notification message (optional)",
"metadata": {
"key": "value"
}
}将此工具加入你的 Model Context Protocol 服务,让 AI 智能体可以列出并调用它。
将以下内容加入你的 MCP 客户端配置:
{
"mcpServers": {
"elysiatools-jwt-decoder-security-auditor": {
"name": "jwt-decoder-security-auditor",
"description": "解码 JWT Header/Payload,校验 HS256 或 RS256 签名,并检查算法、过期时间与敏感 claim 风险",
"baseUrl": "https://api.elysiatools.com/mcp/sse?toolId=jwt-decoder-security-auditor",
"command": "",
"args": [],
"env": {},
"isActive": true,
"type": "sse"
}
}
}连接到 SSE 端点后,列出已开放的工具:
{
"jsonrpc": "2.0",
"id": 1,
"method": "tools/list"
}通过工具 id 调用,参数由其参数表构建:
{
"jsonrpc": "2.0",
"id": 2,
"method": "tools/call",
"params": {
"name": "jwt-decoder-security-auditor",
"arguments": {
"jwtToken": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjMiLCJyb2xlIjoidXNlciIsImVtYWlsIjoidXNlckBleGFtcGxlLmNvbSIsImV4cCI6MjAwMDAwMDAwMH0.0jVQ4ZJ1vF6K_6n0Xm2jtfwIY3PrM6t5Z2iB4Wn7s0w",
"hmacSecret": "super-secret-demo-key",
"rsaPublicKey": "-----BEGIN PUBLIC KEY-----"
}
}
}有问题或反馈?请联系 [email protected]