Lachlan

@gregw yes, but we need to discuss the issue with the callback. 1. You say we should not execute the callback. 2. Using `SerializedInvoker` like we did before causes it...

I am not executing this anymore, I have lots of changes which I have not pushed, will push them today.

replaced by https://github.com/jetty/jetty.project/pull/12186

This is ready for early reviews as the implementation is complete. To test this yourself you can install MetaMask browser extension and run `org.eclipse.jetty.security.siwe.example.SignInWithEthereumEmbeddedExample`. TODOs: - ~~Write Javadoc.~~ - ~~Add...

replaced by https://github.com/jetty/jetty.project/pull/12188

It is used by `UserAuthenticationSucceeded#logout` and `SessionAuthentication#readObject`. > It should be easy enough to add some code that if contextHandler is null, then to ask the server for its descendants...

I am not a fan of these annotations. In our PR for spring-framework, I was working on a websocket endpoint where we know `onOpen()` is always called before `onMessage()`, so...