Sign session to prevent brute-forcing

pallets-eco / flask-session

Server side session extension for Flask

https://flask-session.readthedocs.io

BSD 3-Clause "New" or "Revised" License

507 stars 238 forks source link

Sign session to prevent brute-forcing #2

Closed ghost closed 9 years ago

ghost commented 10 years ago

This patch sign emitted cookies to prevent session brute-force. It also refactor session interfaces to avoid code duplication (but do not modify exposed API or settings). For the ease of testing external dependencies such as memcached or redis are installed automatically using buildout. When launching tests using make external services are also started/stopped automatically.

I you have any suggestion / comments, feel free :)

ghost commented 9 years ago

Hello, is there anything I can do to get my PR merged?

fengsp commented 9 years ago

@jexhson Sorry for the delay, could you just send code that contains the signer part?