innov
/
django1
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
django1/django/contrib/sessions/backends
History
Carl Meyer df049ed77a Fixed #19324 -- Avoided creating a session record when loading the session. 
The session record is now only created if/when the session is modified. This
prevents a potential DoS via creation of many empty session records.

This is a security fix; disclosure to follow shortly.
 		2015-07-08 15:23:03 -04:00
..
__init__.py Fixed #2066: session data can now be stored in the cache or on the filesystem. This should be fully backwards-compatible (the database cache store is still the default). A big thanks to John D'Agostino for the bulk of this code. 2007-09-15 21:29:14 +00:00
base.py Fixed #24915 -- Added stricter session key validation 2015-06-06 20:04:20 -04:00
cache.py Fixed #19324 -- Avoided creating a session record when loading the session. 2015-07-08 15:23:03 -04:00
cached_db.py Fixed #19324 -- Avoided creating a session record when loading the session. 2015-07-08 15:23:03 -04:00
db.py Fixed #19324 -- Avoided creating a session record when loading the session. 2015-07-08 15:23:03 -04:00
file.py Fixed #19324 -- Avoided creating a session record when loading the session. 2015-07-08 15:23:03 -04:00
signed_cookies.py Fixed #24468 -- Made signed cookies cache backend resilient to unpickling exceptions. 2015-03-12 08:19:54 -04:00