Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
branch: master
Commits on Jul 14, 2011
  1. @dound

    Django fix: don't crash if the middleware's process_request() is skip…

    dound authored
    …ped (e.g., by some other middleware)
Commits on Jul 3, 2011
  1. @dound

    update README and docs to v1.07

    dound authored
  2. @dound

    make gae-sessions thread-safe

    dound authored
    Previously, a global variable was used to store the session associated with the
    current request.  This was sufficient in the past (and to date) but sometime in
    the future app engine is going to support threading.  The minor change
    introduced by this commit ensures that gae-sessions will continue to work
    properly even when being used by multiple threads.
  3. @dound
  4. @dound

    bad data now generates a warning rather than raising an exception

    dound authored
    Bad data will result in an empty session being loaded.  Typically, this should
    only happen if the developer makes some changes to class names stored in old
    sessions (which can no longer be decoded as a result).
  5. @dound
  6. @dound
  7. @dound

    simplify set_current_session

    dound authored
    The caller can build their own Session object with minimal effort.
  8. @darktable @dound

    added set_current_session for situations where you manually create a …

    darktable authored dound committed
    …session object and want it to be auto-managed by the middleware
  9. @eliasnaur @dound

    Added support for Django cache middleware.

    eliasnaur authored dound committed
    The gae-sessions middleware will set the Vary header in the response if
    the session has been accessed.
  10. @dound

    Leave out expiry field from session cookies (Fixes session cookies on…

    Elias Naur authored dound committed
    … IE)
Commits on Dec 15, 2010
  1. @eliasnaur

    Added support for expiry time value 0, which means that the session c…

    eliasnaur authored Elias Naur committed
    …ookie will expire when the browser session ends.
Commits on Dec 12, 2010
  1. @dound

    update README and docs to v1.06

    dound authored
  2. @dound

    fix: set memcache expiration time to session expiration time

    dound authored
      -- didn't set any expiration in the past, so it would remain in memcache until the session was terminated or memcache evicted it
Commits on Oct 2, 2010
  1. @dound

    update readme to describe new option to instruct the client browser t…

    dound authored
    …o only send cookies over SSL
Commits on Sep 28, 2010
  1. @dound
Commits on Sep 27, 2010
  1. @dound

    update README and docs to v1.05

    dound authored
  2. @dound

    add new "SSL only" option which forces clients to ONLY send their coo…

    dound authored
    …kies over a secure channel by setting the "Secure" attribute on cookies
    
      -- this is not done by default; it is only done if the user explicitly passes ssl_only=True to Session.start()
  3. @dound
Commits on Aug 17, 2010
  1. @dound

    update README and docs to v1.04

    dound authored
  2. @dound

    explicitly specify namespace for all datastore/memcache operations

    dound authored
      -- ensures session data is always stored and retrieved from the namespace '' (GAE 1.3.6 can set a different default namespace)
Commits on Jul 24, 2010
  1. @dound

    update README and docs to v1.03

    dound authored
  2. @dound

    compatability improvement: specify expiration times in GMT

    dound authored
      -- Internet Explorer discarded all cookies whose expirations were specified in PST when the browser was closed
      -- Internet Explorer now properly stores cookies (apparently it requires the time zone to be GMT)
  3. @dound

    security: specify HttpOnly as part of the cookie header

    dound authored
      -- instructs browsers to not allow JavaScript to access this cookie
      -- session cookies are only processed server-side, so this helps prevent some XSS attacks
Commits on Jul 10, 2010
  1. @dound

    update docs and demo to highlight a "gotcha" - don't dynamically gene…

    dound authored
    …rate your secret key or existing sessions will be invalidated every time your app runs!
Commits on Jun 15, 2010
  1. @dound

    update README and docs to v1.02

    dound authored
  2. @dound

    bug fix: db.delete() can only take up to 500 entities at a time

    dound authored
      -- old version could pass up to 1,000 entities (if that many existed in the datastore)
Commits on May 25, 2010
  1. @dound
  2. @dound
  3. @dound

    Update readme to v1.01

    dound authored
      -- explain how to use gae-sessions with Django
  4. @dound

    add Django middleware

    dound authored
  5. @dound

    minor doc improvement

    dound authored
  6. @dound
Commits on May 23, 2010
  1. @dound
  2. @dound
Something went wrong with that request. Please try again.