• Reinstate 'stop clientId forcing token auth' change (#542)
• Prioritise a tokenParam over an authParam of the same name
• Fix behaviour with multiple concurrent pings in-flight
• Use console.warn (if present) when logging at ERROR level
• Implement client-side-enforced maxMessageSize limit and bundling constraints
• Deduce streaming response from lack of content-length header even if no transfer-encoding