Enable timestamp checking in Hawk

[ckarlof]

No description provided.

[vladikoff]

Does this cause the Unauthorized errors?

{"code":401,"error":"Unauthorized","message":"Bad mac","errno":401}

I'm trying to switch the tests to run using local picl-idp. However I'm getting errors:

[rfk]

It's not clear what this bug is actually asking for. AFAICT hawk has timestamp-checking enabled by default. Two possibly-related things we need to consider:

• By default it accepts a clock skew of +/- 60 seconds between client and server. Do we want to tweak this? It seems tight enough for me, given our desired to correct this client-side per Return server timestamp in all (or just certificate/sign) responses #233
• AFAICT hawk does not check for re-use of nonces by default. You have to supply a custom nonce-checking function, and hapi doesn't seem to have a default. We should definitely add this.

I filed #253 to track the later. What else needs to be done for this bug?

[ckarlof]

Yes we can close this. I think there some confusion about whether clock skew/timestamp checking is configured and enabled. @zaach seemed to think it wasn't. We should have a test to verify that timestamp check is enabled and works. Closing this bug in favor of that (#255).