We were previously accepting SIWEMessages without primaryIdentityPublicKey before we were able to integrate olm into web. Now that we've been able to integrate olm into web and are always including the primaryIdentityPublicKey in the SIWEMessage statement, we can validate that it's being included.
We don't have to worry about native clients that aren't including primaryIdentityPublicKey because none were publicly released.