class documentation
An in-memory session.
Method | authorize |
Authorize each interface by calling back to the session store's authorization callback. |
Instance Variable | authenticated |
A SessionMechanism indicating what mechanism was used to authenticate this session. |
Instance Variable | identifier |
str identifying a session. |
Instance Variable | is |
A bool indicating whether this session mechanism transmitted over an encrypted transport, i.e., HTTPS. If True, this means that this session can be used for sensitive information; otherwise, the information contained in it should be considered to be available to attackers. |
Instance Variable | _authorization |
Undocumented |
Instance Variable | _components |
Undocumented |
str
identifying a session.
This value should be:
- unique - no two sessions have the same identifier
- unpredictable - no one but the receipient of the session should be able to guess what it is
- opaque - it should contain no interesting information
A bool
indicating whether this session mechanism transmitted over an encrypted transport, i.e., HTTPS. If True, this means that this session can be used for sensitive information; otherwise, the information contained in it should be considered to be available to attackers.