Module jwt 

Structs

JwtParts

JwtSummary

Functions

base64url_decode

Decode url-safe base64 (no padding required). Returns None on invalid input.

decode_jwt

Decode a header.payload.signature JWT into header + claims JSON. The signature is ignored (never decoded or returned).

summarize

Summarize a JWT’s header/claims, redacting sub to a hash and computing expiry/skew against ref_epoch_ms (the using request’s reconstructed time).

token_hash

Stable, non-reversible short hash of a token/value (for grouping + sub redaction).