[Web-SIG] How to make REMOTE_USER variable private across WSGI middlewares?

Etienne Robillard tkadm30 at yandex.com
Mon Oct 10 10:30:27 EDT 2016


I'm attempting to develop a OAuth 2.0 authentication middleware which 
sets REMOTE_USER variable into the WSGI environ object, however I'm 
unable to make this variable unique for the logged user.

Is it recommended to use threading.local or gevent to make the WSGI 
environment persisting on a per-request basis ?

What others options can you advise to make private request data not 
accessible in WSGI ?

Thanks in advance,


Etienne Robillard
tkadm30 at yandex.com

More information about the Web-SIG mailing list