...
Header - contains the signing algorithm and token type
Payload - contains data about the Client and access
Signature - consists of the combined base64URLencoded(header).base64URLencoded(payload) all signed with the private secret key provided by the server, using the algorithm stated in the header.
...