Mercurial > p > roundup > code
view .hgignore @ 5211:f4b6a2a3e605
Fix expiration dates and expire csrf tokens properly
In client.py: add explicit expiration of csrf tokens to
handle_csrf. There is a clean_up() that runs on every client
connection before handle)csrf is invoked, but it only cleans every
hour. With short lived tokens this is insufficient. Also remove
debugging.
In templating.py fix values for seconds/week and minutes per week. The
original values were shifted/transposed and an order of magnitude off.
In test_templating.py again fix seconds/week constant.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Sun, 19 Mar 2017 17:10:13 -0400 |
| parents | 8e34362a14f7 |
| children | b57c3d50505b |
line wrap: on
line source
syntax: glob *.orig *.rej *~ \#*\# .\#* *.swp *.tmp *.pyd *.pyc *.pyo build demo dist MANIFEST _test_* *.cover share/doc/roundup/html doc/FAQ.html doc/admin_guide.html doc/announcement.html doc/customizing.html doc/design.html doc/developers.html doc/features.html doc/glossary.html doc/implementation.html doc/index.html doc/installation.html doc/mysql.html doc/overview.html doc/postgresql.html doc/security.html doc/tracker_templates.html doc/upgrading.html doc/user_guide.html doc/whatsnew-0.7.html doc/whatsnew-0.8.html doc/xmlrpc.html locale/*.mo locale/*.bak locale/*.poedit website/www/_tmp/ website/www/COPYING.txt website/www/docs website/www/html/