voussoir/etiquette
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Use urandom instead of uuid for session id.

Browse source
This commit is contained in:
voussoir 2018-01-13 15:49:14 -08:00
parent c049b97bc6
commit d84fc037fe
1 changed files with 9 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
frontends/etiquette_flask/etiquette_flask/sessions.py
View file

@ -1,14 +1,15 @@
import flask import flask; from flask import request
from flask import request
import functools import functools
import uuid import math
import os
import werkzeug.wrappers import werkzeug.wrappers
from etiquette import helpers from etiquette import helpers
def _generate_token(): def _generate_token(length=32):
token = str(uuid.uuid4()) randbytes = os.urandom(math.ceil(length / 2))
#print('MAKE SESSION', token) token = ''.join('{:02x}'.format(x) for x in randbytes)
token = token[:length]
return token return token
def _normalize_token(token): def _normalize_token(token):
@ -25,7 +26,8 @@ class SessionManager:
def get(self, token): def get(self, token):
token = _normalize_token(token) token = _normalize_token(token)
return self.sessions.get(token, None) session = self.sessions.get(token, None)
return session
def give_token(self, function): def give_token(self, function):
''' '''