Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Sessions] Allow to regenerate the session ID #728

Closed
LoicPoullain opened this issue May 28, 2020 · 1 comment · Fixed by #792
Closed

[Sessions] Allow to regenerate the session ID #728

LoicPoullain opened this issue May 28, 2020 · 1 comment · Fixed by #792
Labels
feature request

Comments

@LoicPoullain
Copy link
Member

LoicPoullain commented May 28, 2020
edited
Loading

Problem

When a user logs in or change their password, it is a good practice to regenerate the session ID (see https://cheatsheetseries.owasp.org/cheatsheets/Session_Management_Cheat_Sheet.html#renew-the-session-id-after-any-privilege-level-change).

Solution

Add a new method Session.regenerateID.
@LoicPoullain LoicPoullain mentioned this issue Aug 20, 2020
Merged
10 tasks
@LoicPoullain LoicPoullain linked a pull request Aug 20, 2020 that will close this issue
[V2] Simplify session system, make it more robust and add new features #792
Merged
10 tasks
This was referenced Aug 20, 2020
Closed
Merged
@LoicPoullain
Copy link
Member Author

Feature added in v2

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature request
Projects
Issue tracking
Archived in project
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[V2] Simplify session system, make it more robust and add new features FoalTS/foal
1 participant
@LoicPoullain