Menu
I'm creating a webapp using Pyramid with Beaker sessions.
I would like to store user id in request.session['user_id'] and some other info after successful signing in and then use it for checking if user already signed in:
if 'user_id' in request.session:
# user signed in
else:
# user not signed in or session is expired
The question is: is it safe to rely on sessions or it will be better and/or safer to use Pyramid's authenticated_userid() with remember() and forget() from pyramid.security?
727
Use pyramid_beaker and the SessionAuthenticationPolicy, then use pyramid.authentication.authenticated_userid() to check if they're logged in or not. If it returns None, they're not.
61
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
