JWK Generator
Create JSON Web Keys instantly, right in your browser. No servers, no cloud, your tokens never leave your device
What is a JWK?
JSON Web Key (JWK) are a JSON data structure that represents cryptographic keys. These keys are primarily used for verifying JWT in OAuth flows. JWK are designed to be easily exchanged, making them a standardized and interoperable format for representing cryptographic keys. Its structure depends on the key type (like RSA, EC, or OCT), but most keys share some common fields that describe how the key should be used. Below is an example RSA public key in JWK format:
Let’s break down what each part of this JSON means:
- alg: The algorithm intended to be used with the key.
- e: The RSA public exponent. Usually a small value like
AQAB(base64url for 65537). - kty: The key type. For example,
RSA,EC, oroct(symmetric). - kid: The key ID. A unique identifier that helps systems pick the right key when multiple are available.
- n: The RSA modulus. A big base64url string representing the public key material. See full spec
How JWKs work
When a system issues a signed JWT, it includes a kid(key ID) in the token header. Clients or other servers can fetch the JWKS endpoint, find the matching kid, and use the associated public key to verify the signature. This allows secure key rotation and trust establishment without hardcoding keys.
Try it yourself
Use the generator above to create secure JWKs directly in your browser. No server side processing, everything happens on your device for maximum security. You can generate RSA, EC, EdDSA, or symmetric keys with desired customization and export them in JWK format.