From 20f7311622f19d64673ee9fc670d2a143ec5bd34 Mon Sep 17 00:00:00 2001
From: Grant Limberg <grant.limberg@zerotier.com>
Date: Wed, 1 Apr 2026 09:48:05 -0700
Subject: [PATCH] Skip redundant nonce sending with an expiry time of 0

---
 nonfree/controller/CentralDB.cpp | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/nonfree/controller/CentralDB.cpp b/nonfree/controller/CentralDB.cpp
index 8f4d66c08..6e65a90f2 100644
--- a/nonfree/controller/CentralDB.cpp
+++ b/nonfree/controller/CentralDB.cpp
@@ -584,14 +584,6 @@ AuthInfo CentralDB::getSSOAuthInfo(const nlohmann::json& member, const std::stri
 					exit(7);
 				}
 
-				// For reused nonces (non-INSERT paths), publish the nonce update here.
-				// New nonces are published inside the INSERT branch above (before w.commit()).
-				// We use 0 for nonceExpiration on reused nonces since the actual
-				// expiration is already stored in the database.
-				if (_ssoNonceWriter && ! nonce.empty()) {
-					_ssoNonceWriter->publishSSONonceUpdate(nonce, 0, networkId, memberId, frontend);
-				}
-
 				r = w.exec(
 					"SELECT oc.client_id, oc.authorization_endpoint, oc.issuer, oc.provider, 1 AS sso_impl_version "
 					"FROM oidc_config oc "