return jwt.Claims when Verify token

cnderrauber · cnderrauber · commit 2ce2cf824581 · 2025-12-22T10:58:01.000+08:00
diff --git a/auth/verifier.go b/auth/verifier.go
@@ -58,23 +58,23 @@ func (v *APIKeyTokenVerifier) Identity() string {
 	return v.identity
 }
 
-func (v *APIKeyTokenVerifier) Verify(key interface{}) (*ClaimGrants, error) {
+func (v *APIKeyTokenVerifier) Verify(key interface{}) (*jwt.Claims, *ClaimGrants, error) {
 	if key == nil || key == "" {
-		return nil, ErrKeysMissing
+		return nil, nil, ErrKeysMissing
 	}
 	if s, ok := key.(string); ok {
 		key = []byte(s)
 	}
 	out := jwt.Claims{}
 	claims := ClaimGrants{}
 	if err := v.token.Claims(key, &out, &claims); err != nil {
-		return nil, err
+		return nil, nil, err
 	}
 	if err := out.Validate(jwt.Expected{Issuer: v.apiKey, Time: time.Now()}); err != nil {
-		return nil, err
+		return nil, nil, err
 	}
 
 	// copy over identity
 	claims.Identity = v.identity
-	return &claims, nil
+	return &out, &claims, nil
 }
diff --git a/livekit/types.go b/livekit/types.go
@@ -59,6 +59,9 @@ func (s NodeID) String() string              { return string(s) }
 func (s JobID) String() string               { return string(s) }
 func (s DispatchID) String() string          { return string(s) }
 func (s AgentName) String() string           { return string(s) }
+func (s ParticipantKey) String() string {
+	return fmt.Sprintf("%s_%s_%s", s.ProjectID, s.RoomName, s.Identity)
+}
 
 type stringTypes interface {
 	ParticipantID | RoomID | TrackID | ParticipantIdentity | ParticipantName | RoomName | ConnectionID | NodeID
diff --git a/webhook/verifier.go b/webhook/verifier.go
@@ -51,7 +51,7 @@ func Receive(r *http.Request, provider auth.KeyProvider) ([]byte, error) {
 		return nil, ErrSecretNotFound
 	}
 
-	claims, err := v.Verify(secret)
+	_, claims, err := v.Verify(secret)
 	if err != nil {
 		return nil, err
 	}

Original file line number	Diff line number	Diff line change
`@@ -58,23 +58,23 @@ func (v *APIKeyTokenVerifier) Identity() string {`
`58`	`58`	`return v.identity`
`59`	`59`	`}`
`60`	`60`
`61`		`-func (v APIKeyTokenVerifier) Verify(key interface{}) (ClaimGrants, error) {`
	`61`	`+func (v APIKeyTokenVerifier) Verify(key interface{}) (jwt.Claims, *ClaimGrants, error) {`
`62`	`62`	`if key == nil \|\| key == "" {`
`63`		`- return nil, ErrKeysMissing`
	`63`	`+ return nil, nil, ErrKeysMissing`
`64`	`64`	`}`
`65`	`65`	`if s, ok := key.(string); ok {`
`66`	`66`	`key = []byte(s)`
`67`	`67`	`}`
`68`	`68`	`out := jwt.Claims{}`
`69`	`69`	`claims := ClaimGrants{}`
`70`	`70`	`if err := v.token.Claims(key, &out, &claims); err != nil {`
`71`		`- return nil, err`
	`71`	`+ return nil, nil, err`
`72`	`72`	`}`
`73`	`73`	`if err := out.Validate(jwt.Expected{Issuer: v.apiKey, Time: time.Now()}); err != nil {`
`74`		`- return nil, err`
	`74`	`+ return nil, nil, err`
`75`	`75`	`}`
`76`	`76`
`77`	`77`	`// copy over identity`
`78`	`78`	`claims.Identity = v.identity`
`79`		`- return &claims, nil`
	`79`	`+ return &out, &claims, nil`
`80`	`80`	`}`
Original file line number	Diff line number	Diff line change
`@@ -51,7 +51,7 @@ func Receive(r *http.Request, provider auth.KeyProvider) ([]byte, error) {`
`51`	`51`	`return nil, ErrSecretNotFound`
`52`	`52`	`}`
`53`	`53`
`54`		`- claims, err := v.Verify(secret)`
	`54`	`+ _, claims, err := v.Verify(secret)`
`55`	`55`	`if err != nil {`
`56`	`56`	`return nil, err`
`57`	`57`	`}`