Authn.tech
Home
  • SAML 2.0
  • OAuth 2.0
  • OIDC
  • WebAuthn / Passkey
  • MFA / TOTP
  • LDAP
  • All Tools
  • JWT Decode
  • JWT Sign
  • JWK Gen
  • JWK → PEM
  • PEM → JWK
  • PKCE Gen
  • OIDC Discovery
  • TOTP
  • WebAuthn
  • SAML Codec
  • SAML Metadata
  • SAML Response
  • X.509 Cert
  • PEM Inspect
  • Base64URL
  • LDAP Filter
  • Overview & Roles
  • OIDC Mock
  • SAML Mock
  • Mail Server
  • LDAP Directory
  • OIDC Login Demo
  • SAML Login Demo
  • 简体中文
  • English
  • Deutsch
GitHub
Home
  • SAML 2.0
  • OAuth 2.0
  • OIDC
  • WebAuthn / Passkey
  • MFA / TOTP
  • LDAP
  • All Tools
  • JWT Decode
  • JWT Sign
  • JWK Gen
  • JWK → PEM
  • PEM → JWK
  • PKCE Gen
  • OIDC Discovery
  • TOTP
  • WebAuthn
  • SAML Codec
  • SAML Metadata
  • SAML Response
  • X.509 Cert
  • PEM Inspect
  • Base64URL
  • LDAP Filter
  • Overview & Roles
  • OIDC Mock
  • SAML Mock
  • Mail Server
  • LDAP Directory
  • OIDC Login Demo
  • SAML Login Demo
  • 简体中文
  • English
  • Deutsch
GitHub
  • Online Tools

    • All Tools
    • JWT / JWK

      • JWT Decode
      • JWT Sign
      • JWK Gen
      • JWK → PEM
      • PEM → JWK
    • OAuth2 / OIDC

      • PKCE Gen
      • Discovery
    • MFA / Passkey

      • TOTP
      • WebAuthn
    • SAML

      • SAML Codec
      • SAML Metadata
      • SAML Response
    • Certs / Encoding

      • X.509 Cert
      • PEM Inspect
      • Base64URL
    • LDAP

      • LDAP Filter

Online Tools

This site provides a set of online tools for debugging authentication protocols. All logic runs in your browser locally; your tokens and messages are never uploaded to any server, so you can confidently paste debugging data.

JWT / JWK

ToolPurpose
JWT Decoder and Verifierjwt.io style dual-column decode with three-segment color highlighting; supports full HS/RS/PS/ES series signature verification
JWT SignerEnter Payload + secret to generate signed token, one-click test key pair generation
JWK / Key Pair GeneratorGenerate RSA/EC key pairs, export JWK, JWKS, PEM with RFC 7638 kid
JWK / JWKS → PEMConvert JWK/JWKS to PEM public key, display kty/alg/use/kid and thumbprint
PEM → JWKConvert PEM public key (SPKI) / private key (PKCS#8) to JWK with RFC 7638 kid

OAuth2 / OIDC

ToolPurpose
PKCE GeneratorGenerate code_verifier / code_challenge (S256) plus state, nonce
OIDC Discovery ViewerEnter issuer, fetch and interpret /.well-known/openid-configuration and JWKS

MFA / Passkey

ToolPurpose
TOTP ToolGenerate secret, real-time code and countdown, otpauth:// URI and QR code, verify codes
WebAuthn DemoCreate/use Passkey in browser, parse attestation/assertion data structure

SAML / Certificate / Encoding

ToolPurpose
SAML Encoder/DecoderDecode SAMLRequest / SAMLResponse (auto-detect Redirect / POST encoding), generate AuthnRequest and Redirect URL
SAML Metadata ParserParse metadata: role, entityID, endpoints, NameIDFormat, display embedded certificate validity / fingerprint
SAML Response ParserStructured display of Response/Assertion: Subject, Conditions, Attributes, signature algorithm
X.509 Certificate ParserParse PEM/DER certificate: subject, issuer, validity, public key/signature algorithm, SHA-1/SHA-256 fingerprint
PEM ParserIdentify any PEM block type (certificate/CSR/public/private key/CRL), show DER length and key algorithm
Base64URL Encoder/DecoderText ↔ Base64 / Base64URL conversion

LDAP

ToolPurpose
LDAP Filter BuilderVisually assemble RFC 4515 search filters (AND/OR/NOT, auto-escaping), test directly against the Mock LDAP sample directory

Companion Mock Service

Need end-to-end integration testing? See Mock Server: OIDC OP/RP, resource server, SAML IdP/SP with all four roles plus clickable OIDC login demo. Feature requests welcome on GitHub.

Last updated: 7/6/26, 8:43 AM
Contributors: linux, Claude Opus 4.8