Use strong sessions protection
See https://flask-login.readthedocs.io/en/latest/#session-protection for details
This commit is contained in:
parent
189243a9b0
commit
b4165335a7
@ -60,6 +60,7 @@ app = Flask(__name__)
|
||||
lm = LoginManager()
|
||||
lm.login_view = 'web.login'
|
||||
lm.anonymous_user = ub.Anonymous
|
||||
lm.session_protection = 'strong'
|
||||
|
||||
ub.init_db(cli.settingspath)
|
||||
# pylint: disable=no-member
|
||||
|
Loading…
Reference in New Issue
Block a user