Is using a signal for state changes safe? Signals are broadcast on the bus, which may leak data. The QR code in hybrid flow contains a shared secret, so it would be good to protect that for defense-in-depth.
Do we need to have the client set up an endpoint to send a unicast message instead?
This would be a breaking API change for initiate_event_stream().
Is using a signal for state changes safe? Signals are broadcast on the bus, which may leak data. The QR code in hybrid flow contains a shared secret, so it would be good to protect that for defense-in-depth.
Do we need to have the client set up an endpoint to send a unicast message instead?
This would be a breaking API change for
initiate_event_stream().