maya-chen/flask
1
0
Fork 0
forked from orbit-oss/flask
Code Pull requests Activity

Updated documentation for the new sessions

Browse source
This commit is contained in:
Armin Ronacher 2012-10-07 12:40:59 +02:00
parent e1a576122b
commit 261c4a6aee
2 changed files with 9 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

9
docs/upgrading.rst
View file

@ -29,9 +29,14 @@ format changed from pickle to a specialized JSON format. This change has
been done in order to avoid the damage an attacker can do if the secret been done in order to avoid the damage an attacker can do if the secret
key is leaked. When you upgrade you will notice two major changes: all key is leaked. When you upgrade you will notice two major changes: all
sessions that were issued before the upgrade are invalidated and you can sessions that were issued before the upgrade are invalidated and you can
only store a limited amount of types in the session. only store a limited amount of types in the session. The new sessions are
by design much more restricted to only allow JSON with a few small
extensions for tuples and strings with HTML markup.
TODO: add external module for session upgrading In order to not break people's sessions it is possible to continue using
the old session system by using the `Flask-OldSessions_` extension.
.. _Flask-OldSessions: http://packages.python.org/Flask-OldSessions/
Version 0.9 Version 0.9
----------- -----------

5
flask/sessions.py
View file

@ -3,10 +3,9 @@
flask.sessions flask.sessions
~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~
Implements cookie based sessions based on Werkzeug's secure cookie Implements cookie based sessions based on itsdangerous.
system.
:copyright: (c) 2011 by Armin Ronacher. :copyright: (c) 2012 by Armin Ronacher.
:license: BSD, see LICENSE for more details. :license: BSD, see LICENSE for more details.
""" """