Skip to content
This repository has been archived by the owner on Feb 22, 2024. It is now read-only.

Flask-Login 0.1.3 removed from PyPI #123

Closed
maxcountryman opened this issue Jun 18, 2013 · 10 comments
Closed

Flask-Login 0.1.3 removed from PyPI #123

maxcountryman opened this issue Jun 18, 2013 · 10 comments

Comments

@maxcountryman
Copy link

Hi,

I'm sorry to report that earlier today I was forced to reset the PyPI index for Flask-Login in order to resolve an issue with downloads.

A side effect of this is we lost a release that was never tagged: 0.1.3. It's unclear how 0.1.3 originally made it out to PyPI but it should never have been there given it wasn't a tagged release.

Naturally this is going to break applications that are looking for 0.1.3 on PyPI. I believe 0.1.3 may have either been a duplicate or a close cousin of 0.1.2 so I think it would be advisable to use 0.1.2 in its place (or where possible use 0.2.x; while I understand that isn't yet possible here).
@mattupstate
Copy link
Collaborator

I'm working on updating to 0.2.2 but there's an issue sometimes where the current_user value from the context processor is None when it should be the anonymous user class I've specified. I believe this occurs only when the _load_from_cookie method is called.

@maxcountryman
Copy link
Author

I noticed this issue as well trying to patch Flask-Security. It may be a problem in Flask-Login.

@maxcountryman
Copy link
Author

It looks like _load_from_cookie will return None under certain conditions.

@mattupstate
Copy link
Collaborator

I'm pretty sure it's in Flask-Login. When using 0.2.1 the same couple of tests fail but the exception is raised from within _load_from_cookie instead of when trying to render the template.

@maxcountryman
Copy link
Author

What happens if yo hot-patch Flask-Login with this?

    def _load_from_cookie(self, cookie):
        if self.token_callback:
            user = self.token_callback(cookie)
            if user is not None:
                session['user_id'] = user.get_id()
                session['_fresh'] = False
                _request_ctx_stack.top.user = user
            else:
                self.reload_user()
        else:
            user_id = decode_cookie(cookie)
            if user_id is not None:
                session['user_id'] = user_id
                session['_fresh'] = False
            self.reload_user()

@mattupstate
Copy link
Collaborator

The tests in suspect in regards to that function are now fixed. Looks like the flash message category was changed so thats just a test change on my side.

@mattupstate
Copy link
Collaborator

All tests pass now. Thanks for the quick response on this.

@maxcountryman
Copy link
Author

Okay so I think I need to do a release updating that method then. Will that fix things for you as far as Flask-Login?

@mattupstate
Copy link
Collaborator

Yes, that would be greatly appreciated.

@maxcountryman
Copy link
Author

No problem, 0.2.3 should be on PyPI now.

@mattupstate mattupstate mentioned this issue Jun 18, 2013
Closed
galeo pushed a commit to galeo/flask-security-outdated that referenced this issue Mar 4, 2020
@jwag956
Fix - improve documentation and other small bug fixes. (pallets-eco#123)
00d9d9b 
- Improve documentation for :meth:`.UserDatastore.create_user` to make clear that hashed password
  should be passed in.
- Improve documentation for :class:`.UserDatastore` and :func:`.verify_and_update_password`
  to make clear that caller must commit changers to DB if using a session based datastore.
- (:issue:`122`) Clarify when to use ``confirm_register_form`` rather than ``register_form``.
- Fix bug in 2FA that didn't commit DB after using `verify_and_update_password`.
- Fix bug(s) in UserDatastore where changes to user ``active`` flag weren't being
  added to DB.

 closes: pallets-eco#122
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@maxcountryman @mattupstate