Expiration
It may come that the App never any reply to its request from the HAS.
There can be many reasons for this like users not starting their PKSA or not approving or refusing challenge requests they receive.
The APP should monitor requests' expiration against the expire timeout provided in the sign_wait message. They should abort the challenge process and discard pending requests as well as any related reply they may receive.
Last updated