[Flask] Session question

onlinejudge95 onlinejudge95 at gmail.com
Mon May 18 16:06:08 EDT 2020


On Fri, Apr 17, 2020 at 10:08 PM Ford <ford.anthonyj at gmail.com> wrote:

> Looks like you hit the nail on the head.
>
> According to Flask-Sessionstore's github repo, it's a hard fork of
> Flask-Session. See https://github.com/mcrowson/flask-sessionstore
>
> Looks like Flask-Session is no longer being maintained, hence the fork.
>
It's the other way round, Flask-Session is the maintained one and
Flask-Sessionstore not

> Anthony Ford
>
> On Thu, Apr 16, 2020 at 11:05 PM Richard Hector <richard at walnut.gen.nz>
> wrote:
>
>> Thanks Andrew,
>>
>> Now that I know that these exist, I think I'll continue with the
>> tutorial, and get back to this issue later.
>>
>> Both of those seem to have nearly identical documentation - is one a
>> fork of the other?
>>
>> Cheers,
>> Richard
>>
>> On 17/04/20 2:49 pm, Ford wrote:
>> > Flask uses cryptographically signed cookies, which prevents the user
>> > from being able to modify the cookies. It would however be ill-advised
>> > to store any personally identifiable information or anything critical.
>> >
>> > There are server-side options available as extensions, such as
>> > Flask-Session
>> > (https://pythonhosted.org/Flask-Session/,
>> https://hackersandslackers.com/managing-user-session-variables-with-flask-sessions-and-redis/
>> ),
>> > and Flask-Sessionstore
>> > (https://flask-sessionstore.readthedocs.io/en/latest/).
>> >
>> > Anthony Ford
>> >
>> >
>> > On Thu, Apr 16, 2020 at 9:18 PM Richard Hector <richard at walnut.gen.nz
>> > <mailto:richard at walnut.gen.nz>> wrote:
>> >
>> >     Hi all, I hope this is the right place to ask.
>> >
>> >     I've been doing the Flask Mega Tutorial.
>> >
>> >     It appears that sessions are stored in a cookie/cookies in the
>> browser,
>> >     rather than just setting a random session id and storing in the
>> database
>> >     or whatever. I was under the impression (though I'm a web
>> development
>> >     newbie) that this wasn't considered best practice. Is there a way to
>> >     change this behaviour, to store the session info server-side
>> instead?
>> >
>> >     Thanks,
>> >     Richard
>> >     _______________________________________________
>> >     Flask mailing list
>> >     Flask at python.org <mailto:Flask at python.org>
>> >     https://mail.python.org/mailman/listinfo/flask
>> >
>>
>> _______________________________________________
> Flask mailing list
> Flask at python.org
> https://mail.python.org/mailman/listinfo/flask
>


-- 
Thanks,
Mayank Pathak
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/flask/attachments/20200519/7a2c579b/attachment.html>


More information about the Flask mailing list