altf4arnold/datatracker
1
0
Fork 0
Code Issues Pull requests Actions 3 Packages Projects Releases Wiki Activity

Added settings to use the cache back-end for sessions. Separated out the preference cookie age from the session age. Made the session age refresh on each access, and set the session timeout to 4 weeks of no access.

Browse source 
- Legacy-Id: 11473
This commit is contained in:
Henrik Levkowetz 2016-06-24 15:44:54 +00:00
parent a36cf95572
commit 834bf08d6f
2 changed files with 14 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
ietf/cookies/views.py
View file

@ -34,7 +34,7 @@ def preferences(request, **kwargs):
request.COOKIES.update(preferences) request.COOKIES.update(preferences)
response = render("cookies/settings.html", preferences, context_instance=RequestContext(request)) response = render("cookies/settings.html", preferences, context_instance=RequestContext(request))
for key in new_cookies: for key in new_cookies:
response.set_cookie(key, new_cookies[key], settings.SESSION_COOKIE_AGE) response.set_cookie(key, new_cookies[key], settings.PREFERENCES_COOKIE_AGE)
for key in del_cookies: for key in del_cookies:
response.delete_cookie(key) response.delete_cookie(key)
return response return response

15
ietf/settings.py
View file

@ -204,11 +204,19 @@ LOGGING['handlers']['mail_admins']['filters'] += [ 'skip_unreadable_posts' ]
# End logging # End logging
# ------------------------------------------------------------------------ # ------------------------------------------------------------------------
#SESSION_COOKIE_AGE = 60 * 60 * 24 * 7 * 2 # Age of cookie, in seconds: 2 weeks.
SESSION_COOKIE_AGE = 60 * 60 * 24 * 365 * 50 # Age of cookie, in seconds: 50 years
# SESSION_COOKIE_AGE = 60 * 60 * 24 * 7 * 2 # Age of cookie, in seconds: 2 weeks (django default)
SESSION_COOKIE_AGE = 60 * 60 * 24 * 7 * 4 # Age of cookie, in seconds: 4 weeks
SESSION_EXPIRE_AT_BROWSER_CLOSE = False SESSION_EXPIRE_AT_BROWSER_CLOSE = False
# We want to use the JSON serialisation, as it's safer -- but there is /secr/
# code which stashes objects in the session that can't be JSON serialized.
# Switch when that code is rewritten.
#SESSION_SERIALIZER = "django.contrib.sessions.serializers.JSONSerializer"
SESSION_SERIALIZER = 'django.contrib.sessions.serializers.PickleSerializer' SESSION_SERIALIZER = 'django.contrib.sessions.serializers.PickleSerializer'
SESSION_ENGINE = "django.contrib.sessions.backends.cache"
SESSION_SAVE_EVERY_REQUEST = True
PREFERENCES_COOKIE_AGE = 60 * 60 * 24 * 365 * 50 # Age of cookie, in seconds: 50 years
TEMPLATE_LOADERS = ( TEMPLATE_LOADERS = (
('django.template.loaders.cached.Loader', ( ('django.template.loaders.cached.Loader', (
@ -383,6 +391,7 @@ TEST_CODE_COVERAGE_EXCLUDE = [
"*/management/commands/*", "*/management/commands/*",
"ietf/settings*", "ietf/settings*",
"ietf/utils/test_runner.py", "ietf/utils/test_runner.py",
"ietf/checks.py",
] ]
TEST_COVERAGE_MASTER_FILE = os.path.join(BASE_DIR, "../release-coverage.json.gz") TEST_COVERAGE_MASTER_FILE = os.path.join(BASE_DIR, "../release-coverage.json.gz")
@ -690,6 +699,8 @@ if SERVER_MODE != 'production':
'BACKEND': 'django.core.cache.backends.dummy.DummyCache', 'BACKEND': 'django.core.cache.backends.dummy.DummyCache',
} }
} }
SESSION_ENGINE = "django.contrib.sessions.backends.db"
if 'SECRET_KEY' not in locals(): if 'SECRET_KEY' not in locals():
SECRET_KEY = 'PDwXboUq!=hPjnrtG2=ge#N$Dwy+wn@uivrugwpic8mxyPfHka' SECRET_KEY = 'PDwXboUq!=hPjnrtG2=ge#N$Dwy+wn@uivrugwpic8mxyPfHka'
ALLOWED_HOSTS = ['*',] ALLOWED_HOSTS = ['*',]