Skip to content

web-capture gateway: collapse duplicated authToken / maxViewers state #641

Description

Follow-up from PR #631 review (finding #9).

Two pieces of state are stored in two places with the risk of drift:

  • bearer tokengateway.authToken + skitClient.token, with byte-identical helpers gateway.authReq / skitClient.auth.
  • maxViewersgateway and sessionManager both hold it.

Collapse each to a single source of truth (e.g. token lives only on skitClient; maxViewers only on sessionManager) so they can't diverge. Pure cleanup, no behavior change; deferred from PR #631 to keep that PR's diff focused on the correctness/security fixes.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions