Back to Random Keys

JWT Secret Generator

Generate cryptographically secure signing secrets for HMAC-based JWT algorithms.

HS256 Secrets

256b

Usage

import jwt from 'jsonwebtoken';

const token = jwt.sign(
  { userId: 123 },
  process.env.JWT_SECRET,
  { algorithm: 'HS256', expiresIn: '1h' }
);

Key Requirements

  • HS256 — Minimum 256-bit (32 bytes) secret
  • HS384 — Minimum 384-bit (48 bytes) secret
  • HS512 — Minimum 512-bit (64 bytes) secret

These secrets are generated using crypto.getRandomValues() and never leave your browser.