Agent402 / tools / jwt-sign

JWT sign

FREE with proof-of-work · or $0.001 in USDC · POST /api/jwt-sign

Mint a signed JSON Web Token (HMAC: HS256 default, HS384, HS512) from a payload + secret. Pairs with jwt-decode/jwt-verify to complete the trio. Deterministic — same payload, secret, and alg always produce the same token.

Input

FieldTypeDescription
payload *objectclaims to encode (object)
secret *stringHMAC signing secret
algstringHS256 (default) | HS384 | HS512

Example output

{
  "token": "eyJhbGci...",
  "alg": "HS256"
}

Try it — see the 402 challenge (free)

curl -i -X POST https://agent402.tools/api/jwt-sign \
  -H "Content-Type: application/json" \
  -d '{"payload":{"sub":"123","role":"admin"},"secret":"s3cr3t","alg":"HS256"}'

The response is HTTP 402 Payment Required with exact payment requirements. Any x402 v2 client pays automatically and retries:

Paid call (JavaScript agent)

import { wrapFetchWithPayment } from "@x402/fetch";
import { x402Client } from "@x402/core/client";
import { registerExactEvmScheme } from "@x402/evm/exact/client";
import { privateKeyToAccount } from "viem/accounts";

const client = new x402Client();
registerExactEvmScheme(client, { signer: privateKeyToAccount(KEY) });
const payFetch = wrapFetchWithPayment(fetch, client);

const res = await payFetch("https://agent402.tools/api/jwt-sign", {
  method: "POST",
  headers: { "Content-Type": "application/json" },
  body: JSON.stringify({
    "payload": {
      "sub": "123",
      "role": "admin"
    },
    "secret": "s3cr3t",
    "alg": "HS256"
  }),
});

No wallet? Pay with compute

This is a pure-CPU tool, so an agent without a wallet can pay with proof-of-work instead of USDC: fetch a challenge, solve the sha256 puzzle (16 leading zero bits — a fraction of a second of CPU, no money, no AI tokens), and resend with the X-Pow-Solution header.

import { createHash } from "node:crypto";
const lz = (b) => { let t = 0; for (const x of b) { if (!x) { t += 8; continue; } t += Math.clz32(x) - 24; break; } return t; };
const c = await (await fetch("https://agent402.tools/api/pow/challenge?slug=jwt-sign")).json();
let n = 0;
while (lz(createHash("sha256").update(c.challenge + ":" + n).digest()) < c.difficulty) n++;
await fetch("https://agent402.tools/api/jwt-sign", { method: "POST", headers: { "X-Pow-Solution": c.token + ":" + n, "Content-Type": "application/json" }, body: JSON.stringify({"payload":{"sub":"123","role":"admin"},"secret":"s3cr3t","alg":"HS256"}) });

Related tools

Hash

FREE with compute · or $0.001 USDC · POST /api/hash

Cryptographic hash of a text string. Algorithms: sha256 (default), sha512, sha1, md5. Returns hex and base64 digests.

HMAC

FREE with compute · or $0.001 USDC · POST /api/hmac

HMAC signature of a message with a shared key. Algorithms: sha256 (default), sha512, sha1. Returns hex and base64.

Base64

FREE with compute · or $0.001 USDC · POST /api/base64

Base64 encode or decode text. mode: encode (default) or decode. Handles URL-safe base64 on decode.