jimsch
commented
4 years ago I don't know if it is worth it or not, that is a question that could be left to the implementer if it the field is optional rather than required.
Closed marco-tiloca-sics closed 4 years ago
jimsch
commented
4 years ago I don't know if it is worth it or not, that is a question that could be left to the implementer if it the field is optional rather than required.
It's not needed if the token authorizes the client to be only monitor in all the groups covered in the token.
Is it worth addressing and implementing this optimization? Or rather to just return a kdcnonce even in such a case, even thoug that joining node is not going to use the received kdcnonce to build a signature challenge?