Browse Source

fix links

pull/2442/head
David Lord 8 years ago
parent
commit
97ad085912
No known key found for this signature in database
GPG Key ID: 7A1C87E3F5BC42A8
  1. 3
      docs/conf.py
  2. 14
      docs/security.rst

3
docs/conf.py

@ -267,9 +267,10 @@ intersphinx_mapping = {
'werkzeug': ('http://werkzeug.pocoo.org/docs/', None), 'werkzeug': ('http://werkzeug.pocoo.org/docs/', None),
'click': ('http://click.pocoo.org/', None), 'click': ('http://click.pocoo.org/', None),
'jinja': ('http://jinja.pocoo.org/docs/', None), 'jinja': ('http://jinja.pocoo.org/docs/', None),
'itsdangerous': ('https://pythonhosted.org/itsdangerous', None),
'sqlalchemy': ('https://docs.sqlalchemy.org/en/latest/', None), 'sqlalchemy': ('https://docs.sqlalchemy.org/en/latest/', None),
'wtforms': ('https://wtforms.readthedocs.io/en/latest/', None), 'wtforms': ('https://wtforms.readthedocs.io/en/latest/', None),
'blinker': ('https://pythonhosted.org/blinker/', None) 'blinker': ('https://pythonhosted.org/blinker/', None),
} }
html_theme_options = { html_theme_options = {

14
docs/security.rst

@ -213,11 +213,11 @@ option is set, the cookie will be removed when the browser is closed. ::
# cookie expires after 10 minutes # cookie expires after 10 minutes
response.set_cookie('snakes', '3', max_age=600) response.set_cookie('snakes', '3', max_age=600)
For the session cookie, if ``session.permanent`` is set, then For the session cookie, if :attr:`session.permanent <flask.session.permanent>`
:data:`SESSION_COOKIE_LIFETIME` is used to set the expiration. Flask's default is set, then :data:`PERMANENT_SESSION_LIFETIME` is used to set the expiration.
cookie implementation validates that the cryptographic signature is not older Flask's default cookie implementation validates that the cryptographic
than this value. Lowering this value may help mitigate replay attacks, where signature is not older than this value. Lowering this value may help mitigate
intercepted cookies can be sent at a later time. :: replay attacks, where intercepted cookies can be sent at a later time. ::
app.config.update( app.config.update(
PERMANENT_SESSION_LIFETIME=600 PERMANENT_SESSION_LIFETIME=600
@ -231,8 +231,8 @@ intercepted cookies can be sent at a later time. ::
session.permanent = True session.permanent = True
... ...
Use :class:`TimedSerializer` to sign and validate other cookie values (or any Use :class:`itsdangerous.TimedSerializer` to sign and validate other cookie
values that need secure signatures). values (or any values that need secure signatures).
- https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies - https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
- https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie

Loading…
Cancel
Save