add quick and dirty token validator

tools/decode_token.py

@@ -0,0 +1,16 @@
+import jwt
+import sys
+
+if len(sys.argv) != 2:
+    print("Usage: python decode_jwt.py <JWT_TOKEN>")
+    sys.exit(1)
+
+token = sys.argv[1]
+
+try:
+    # Decode the token without verifying the signature
+    decoded = jwt.decode(token, options={"verify_signature": False})
+    print("Decoded JWT:")
+    print(decoded)
+except jwt.DecodeError as e:
+    print(f"Failed to decode JWT: {e}")