Closed HomiGrotas closed 2 years ago
The problem with digest auth is that it is not secure when used with the standard Flask sessions. I always discourage people from using digest auth for this reason, and this is also why I have not included an example.
I would be okay including the example, but only if server-side sessions are used to make it fully secure, with a big comment indicating that server-side sessions are required.
@miguelgrinberg, I Added a warning (used your documentation) and flask_session for server-side sessions.
A digest example is now included in the repository.
There wasn't an example for digest auth