Hello everyone, I'm trying to implement the web2py recipes to improve the efficiency and security of my backend. I'm beggining with sessions and I have a couple of doubts:
- My site is over SSL and has user authentication, so I guess I should secure my sessions. The recipe sais "In your applications, if they require authentication, you should make the session cookies secure with:session.secure()", but, where should I put that code? - The number of session files of my server is growing quickly so I should use the sessions2trash.py script, but, how should I use that script? Should I create a cron task in my server that execute each day something like this "python web2py.py -S app -M -R scripts/sessions2trash.py -A -o -x 3600 -f"? Thank you very much and kind regards! -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
