Security
解析 JWT 的 header/payload 并高亮显示,诊断 exp/nbf/iat/iss/aud/sub/jti 等 claim,使用 HS*/RS*/PS*/ES*/EdDSA 密钥验签,并提供篡改 payload 的伪造教学演示
用三种语言从你的代码中调用此工具。
curl -X POST 'https://api.elysiatools.com/zh/api/tools/jwt-inspector-verifier' \
-H 'Content-Type: application/json' \
-d '{"token":"eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkphbmUgRG9lZSIsImlhdCI6MTUxNjIzOTAyMn0.yo-bLjjeUhUPia17JiJbc2f1e0JXJIJAi4auivcB-IY","mode":"verify","secret":"demo-secret-2026","publicKey":"","forgePayload":"","clockSkew":0}'以 JSON 形式 POST 提交输入参数。文件类型参数需先单独上传。
POST https://api.elysiatools.com/zh/api/tools/jwt-inspector-verifier| 参数名 | 类型 | 必填 | 说明 |
|---|---|---|---|
| token | textarea | 是 | — |
| mode | select | 否 | — |
| secret | text | 否 | — |
| publicKey | textarea | 否 | — |
| forgePayload | textarea | 否 | — |
| clockSkew | number |
将此工具加入你的 Model Context Protocol 服务,让 AI 智能体可以列出并调用它。
将以下内容加入你的 MCP 客户端配置:
{
"mcpServers": {
"elysiatools-jwt-inspector-verifier": {
"name": "jwt-inspector-verifier",
"description": "解析 JWT 的 header/payload 并高亮显示,诊断 exp/nbf/iat/iss/aud/sub/jti 等 claim,使用 HS*/RS*/PS*/ES*/EdDSA 密钥验签,并提供篡改 payload 的伪造教学演示",
"baseUrl": "https://api.elysiatools.com/mcp/sse?toolId=jwt-inspector-verifier",
"command": "",
"args": [],
"env": {},
"isActive": true,
"type": "sse"
}
}
}连接到 SSE 端点后,列出已开放的工具:
{
"jsonrpc": "2.0",
"id": 1,
"method": "tools/list"
}通过工具 id 调用,参数由其参数表构建:
{
"jsonrpc": "2.0",
"id": 2,
"method": "tools/call",
"params": {
"name": "jwt-inspector-verifier",
"arguments": {
"token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkphbmUgRG9lZSIsImlhdCI6MTUxNjIzOTAyMn0.yo-bLjjeUhUPia17JiJbc2f1e0JXJIJAi4auivcB-IY",
"mode": "verify",
"secret": "demo-secret-2026",
"publicKey": "",
"forgePayload": "",
"clockSkew": 0
}
}
}有问题或反馈?请联系 [email protected]
| — |
HTML 结果
{
"result": "<div>Processed HTML content</div>",
"error": "Error message (optional)",
"message": "Notification message (optional)",
"metadata": {
"key": "value"
}
}