21 Apr
2016
21 Apr
'16
11:57 a.m.
On 21/04/16 14:35, Matthew Newton wrote:
The State attribute should tie any challenges with the subsequent request, which might be helpful.
"State" is not added until the eap.authenticate method has run, which is sub-optimal for certain types of logging. It also mutates on every round-trip, so it's actually a PITA for correlating all requests in a multi-request exchange. I've played with all this extensively; will try to write a short email documenting what we did.