How to decrypt a JWT

I have Istio v1.9 and I need to decrypt a JWT token in the incoming request.
Is it possible to decrypt a JWT token by just applying a proper yaml file?
Or do I have to write a custom EnvoyFilter?