[pylons-discuss] Re: How to get my projects' abspath?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/23/2014 12:50 PM, Seth wrote: > Apologies for any confusion. Basically I just want to know my app's > root path so that I can do various random things like store extra logs > there, read the pyramid.pid file, etc. > > Based on your feedback, thi

[pylons-discuss] Re: ZODB problem to change an attribute from 2 diferent threads

Ok, Sorry. I asked in the zodb as well, I found some people asking about zodb here so I did it. Sorry again El miércoles, 23 de abril de 2014 22:11:57 UTC, Ariel Argañaraz escribió: > > Hi, I have a problem with threads. > > The documentation says: > A process with multiple threads will often h

Re: [pylons-discuss] Re: How to store session data server side?

On 04/23/2014 04:17 PM, Jonathan Vanasco wrote: On Wednesday, April 23, 2014 2:23:03 PM UTC-4, Chris Rossi wrote: "sudo apt-get install redis-server" is pretty easy. Then you have a service on localhost listening to the default port, there's pretty much zero configuration required

Re: [pylons-discuss] ZODB problem to change an attribute from 2 diferent threads

On 04/23/2014 06:11 PM, Ariel Argañaraz wrote: Hi, I have a problem with threads. You'll want to ask this question at . The Pylons Project does not maintain ZODB. The documentation says: A processwith multiple threads will often have multiple

[pylons-discuss] ZODB problem to change an attribute from 2 diferent threads

Hi, I have a problem with threads. The documentation says: A process with multiple threads will often have multiple connections to the same database, with different threads having different connections. But I don't Know if I create different connections in the right way. I have 2 threads. In t

Re: [pylons-discuss] Re: How to store session data server side?

On Wed, Apr 23, 2014 at 3:59 PM, wilk wrote: > Could you give an example of a serializer object wich will record the > session on a dict in memory for example ? > https://gist.github.com/mmerickel/8035611 Unfortunately there's one little quirk that you can't reuse the session id, so it changes

[pylons-discuss] Re: How to store session data server side?

Chris, Somes times ago you said that we can use SignedCookieSessionFactory with a custom serializer to just pass an ID and serialize/deserialize to the backend that we want. For loads, it's ok, the parameter is the ID, we can retrieve our data like we want. But for dumps the parameters are a tu

Re: [pylons-discuss] Re: How to store session data server side?

On Wednesday, April 23, 2014 2:23:03 PM UTC-4, Chris Rossi wrote: > > "sudo apt-get install redis-server" is pretty easy. Then you have a > service on localhost listening to the default port, there's pretty much > zero configuration required. > It's a breeze to run and manage for sure; especi

Re: [pylons-discuss] How to store session data server side?

Hey Anders, Storing the CSRF token in the cookie is not an issue, unless an attacker is able to read out the cookie and thus gain the CSRF token, they won’t be able to get access to it at all, even if you stored the CSRF token server side, if an attacker was able to get access to the cookie (us

Re: [pylons-discuss] How to get my projects' abspath?

I wouldn’t recommend using your package’s path to store log files, since that may well be installed in your virtualenv. Instead I would place a configuration parameter in your .ini file that contains the path to store this extra information. Bert On Apr 23, 2014, at 10:50 , Seth wrote: > Apo

Re: [pylons-discuss] How to store session data server side?

I don't think I explained this well. Storing sensitive data in the session cookie is only a problem when the data is sensitive to inspection by your _legitimate_ users. For instance, if you were making a gambling game you wouldn't want to store information about the game state that isn't visible o

Re: [pylons-discuss] Re: How to store session data server side?

On Wed, Apr 23, 2014 at 2:14 PM, Jonathan Vanasco wrote: > > > On Wednesday, April 23, 2014 12:56:11 PM UTC-4, Chris McDonough wrote: >> >> >> Right, it's just not maintained. If someone wants to maintain it, >> they're free to pick it up. I wrote the original bindings but I >> can't/won't main

Re: [pylons-discuss] Re: How to store session data server side?

On Wednesday, April 23, 2014 12:56:11 PM UTC-4, Chris McDonough wrote: > > > Right, it's just not maintained. If someone wants to maintain it, > they're free to pick it up. I wrote the original bindings but I > can't/won't maintain it anymore. The Beaker code itself has no current > mainta

Re: [pylons-discuss] Re: How to store session data server side?

On 04/23/2014 12:06 PM, Jonathan Vanasco wrote: You can still use pyramid_beaker. It works fine under pyramid 1.5 . There are a few heated discussions in the archives over it. It's a sore point for many. I could be wrong on this, but last I checked it's not so much "deprecated" as it is "off

[pylons-discuss] Re: How to get my projects' abspath?

Apologies for any confusion. Basically I just want to know my app's root path so that I can do various random things like store extra logs there, read the pyramid.pid file, etc. Based on your feedback, this seems to work, unless anybody has a better suggestion: from pkg_resources import re

Re: [pylons-discuss] How to store session data server side?

I could be wrong, and would love to be corrected, but storing the CSRF token in a session cookie doesn't seem problematic to me since the cookie should only be readable by your origin. It would only become a concern of you started allowing cross origin requests with credentials. On Apr 23, 2014 8:

[pylons-discuss] Re: How to store session data server side?

You can still use pyramid_beaker. It works fine under pyramid 1.5 . There are a few heated discussions in the archives over it. It's a sore point for many. I could be wrong on this, but last I checked it's not so much "deprecated" as it is "off the radar".A lot of us still use it for s

[pylons-discuss] How to store session data server side?

As I read the documentation for SignedCookieSessionFactory, the data stored in the session is not encrypted. So storing a CSRF token in the session Cookie is not a good option. Pyramid_beaker seem to have been deprecated with release 1.5, so which options are the best for a site with very few

[pylons-discuss] Re: Development workflow for Pyramid/Cornice REST Service + AngularJS GUI

I would use a separate repo for the backend and the frontend and use buildout to compose the environment. The buildout project would then install your repos and setup locally your frontend tools using ree's buildout conf. Then you'll still use your package & bower json files as you would do. Yo