/**
 * Decodes a JWT token without verifying the signature.
 * This is safe because the server will validate the token anyway.
 *
 * @param token - The JWT token string
 * @returns The decoded payload as a record, or null if decoding fails
 */
export declare function decodeJWT(token: string): Record<string, unknown> | null;
/**
 * Extracts the issuer from a JWT token.
 *
 * @param token - The JWT token string
 * @returns The issuer string, or null if not found
 */
export declare function getJWTIssuer(token: string): string | null;
/**
 * Compares two host URLs, ignoring ports.
 * Treats "databricks.com" and "databricks.com:443" as equivalent.
 *
 * @param url1 - First URL or hostname
 * @param url2 - Second URL or hostname
 * @returns true if the hosts are the same
 */
export declare function isSameHost(url1: string, url2: string): boolean;