projects / pgweb.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 642172c) | patch
Include a timestamp in the authentication token
authorMagnus Hagander <magnus@hagander.net>
Tue, 20 Dec 2011 11:52:32 +0000 (12:52 +0100)
committerMagnus Hagander <magnus@hagander.net>
Thu, 22 Dec 2011 18:25:32 +0000 (19:25 +0100)
commit6db628340130442b93d8f42eeb8dbcb6d96b0394
tree67b68c5c94d3c93996633dcfa5df0e05a52a2032tree
parent642172ccb1666039a50d923fd58193595559a268commit | diff
Include a timestamp in the authentication token

This way we can expire a token after e.g. 10 or 30 seconds, making
it impossible to do a replay attack later.
docs/authentication.rst diff | blob | blame | history
pgweb/account/views.py diff | blob | blame | history
tools/communityauth/test_auth.py diff | blob | blame | history
This is the code for the postgresql.org website