JWT Token Fixture Matrix
Choose JWT fixtures for valid access tokens, expired refresh tokens, nested service claims, and invalid-signature auth debugging.
4
Fixture Rows
3
How to Use This Matrix
Use the matrix when the validation target is a set of variants rather than one canonical sample.
How to Use This Matrix
Coverage
- Separates valid, expired, nested-claim, and invalid-signature token cases.
- Useful for auth middleware, API gateways, and token-inspection tooling.
- Anchored to auth-token and signed-request packs.
Fixture Rows
Available Variants
| Variant | Profile | Test Focus | File | Size | Download |
|---|---|---|---|---|---|
|
HS256 Access JWT
Good baseline for middleware and authz checks against a current signed access token.
|
Valid access token | Claim and signature validation |
jwt_hs256_access_token_sample.jwt
|
365 B | Download |
|
Expired Refresh JWT
Useful for token lifetime checks and refresh-path rejection logic.
|
Expired token | Expiry handling |
jwt_expired_refresh_token_sample.jwt
|
351 B | Download |
|
Service Claims JWT
Targets worker/service auth flows with nested claims and permissions.
|
Nested claims token | Role and nested-claim parsing |
jwt_service_claims_token_sample.jwt
|
500 B | Download |
|
Invalid Signature JWT
Use when you need a structurally correct token that fails signature verification.
|
Broken token | Signature failure |
jwt_invalid_signature_sample.jwt
|
347 B | Download |
Related Strategy Pages