aurweb

mirror of https://gitlab.archlinux.org/archlinux/aurweb.git synced 2025-02-03 10:43:03 +01:00

History

Kevin Morris 8501bba0ac change(python): rework session timing Previously, we were just relying on the cookie expiration for sessions to expire. We were not cleaning up Session records either. Rework timing to depend on an AURREMEMBER cookie which is now emitted on login during BasicAuthBackend processing. If the SID does still have a session but it's expired, we now delete the session record before returning. Otherwise, we update the session's LastUpdateTS to the current time. In addition, stored the unauthenticated result value in a variable to reduce redundancy. Signed-off-by: Kevin Morris <kevr@0cost.org>	2021-12-04 02:16:22 -08:00
..
__init__.py	change(python): rework session timing	2021-12-04 02:16:22 -08:00
creds.py	fix(FastAPI): reorganize credential checkin into dedicated file	2021-12-01 02:03:02 -05:00

Previously, we were just relying on the cookie expiration
for sessions to expire. We were not cleaning up Session
records either.

Rework timing to depend on an AURREMEMBER cookie which is
now emitted on login during BasicAuthBackend processing.

If the SID does still have a session but it's expired,
we now delete the session record before returning.

Otherwise, we update the session's LastUpdateTS to
the current time.

In addition, stored the unauthenticated result value
in a variable to reduce redundancy.

Signed-off-by: Kevin Morris <kevr@0cost.org>

2021-12-04 02:16:22 -08:00

__init__.py

change(python): rework session timing

2021-12-04 02:16:22 -08:00

creds.py

fix(FastAPI): reorganize credential checkin into dedicated file

2021-12-01 02:03:02 -05:00