-
-
Notifications
You must be signed in to change notification settings - Fork 797
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
LoginManager fails because of Werkzeug dependency #636
Comments
Just for complement, on official documentation says.
In main branch its correct on line 62 and 63, buts the pypi version is outdated. |
The current latest version of Flask-Login 0.5.0 has been broken since today because of the Werkzeug upstream version 2.1.0 release. Can Flask-Login maintainers release a new version and push it to PyPI please? This is the commit merged into the main branch. (PR #585 ) which was merged in July 2021. A new release is long over due! Update: it looks like Flask Login version 0.6.0 (PR #598) is in the works but unreleased. Can someone push it to PyPI? |
Yup, this just gave me the run around trying to figure out what went wrong with Flask-Login a day after it was working fine. Werkzeug developers seem to be essentially telling anyone who got hit with this error today should've seen it coming: |
Huh. I don't care/have the time enough to actually go through and find how much time the |
We're actively working on updating this project and will make a new release soon. I've locked this as the discussion was not moving in a productive direction. |
Duplicate of #584 |
After Werkzeug updated to v 2.1.0,
LoginManager
cannot importwerkzeug.security.safe_str_cmp
. This is because Werkzeug has removed several deprecated code elements (see pallets/werkzeug#2276). The Werkzeug changelog suggests using hashlib and hmac instead to provide that functionality.The text was updated successfully, but these errors were encountered: