enable secret key rotation

2024-11-08 08:09:01 -08:00 · 2024-11-08 08:09:01 -08:00 · e13373f838
commit e13373f838
parent 7522c4bcdb
9 changed files with 55 additions and 7 deletions
--- a/tests/test_basic.py
+++ b/tests/test_basic.py
@ -1,5 +1,6 @@
 import gc
 import re
+import typing as t
 import uuid
 import warnings
 import weakref
@ -369,6 +370,27 @@ def test_missing_session(app):
        expect_exception(flask.session.pop, "foo")


+def test_session_secret_key_fallbacks(app, client) -> None:
+    @app.post("/")
+    def set_session() -> str:
+        flask.session["a"] = 1
+        return ""
+
+    @app.get("/")
+    def get_session() -> dict[str, t.Any]:
+        return dict(flask.session)
+
+    # Set session with initial secret key
+    client.post()
+    assert client.get().json == {"a": 1}
+    # Change secret key, session can't be loaded and appears empty
+    app.secret_key = "new test key"
+    assert client.get().json == {}
+    # Add initial secret key as fallback, session can be loaded
+    app.config["SECRET_KEY_FALLBACKS"] = ["test key"]
+    assert client.get().json == {"a": 1}
+
+
 def test_session_expiration(app, client):
    permanent = True

--- a/tests/type_check/typing_app_decorators.py
+++ b/tests/type_check/typing_app_decorators.py
--- a/tests/type_check/typing_error_handler.py
+++ b/tests/type_check/typing_error_handler.py
--- a/tests/type_check/typing_route.py
+++ b/tests/type_check/typing_route.py