parent: 3d66b2 | patch | commitdiff
Chris McDonough
2010-11-10 7bd14cbfb396bdb1e892ef0b9d51619c78ae368f
refs
author Chris McDonough <chrism@plope.com>
Wednesday, November 10, 2010 21:24 +0100
committer Chris McDonough <chrism@plope.com>
Wednesday, November 10, 2010 21:24 +0100
commit7bd14cbfb396bdb1e892ef0b9d51619c78ae368f
tree dde8a10c2789a3d9c55116e4fe84f632f47d5351 tree | zip | gz
parent 3d66b2dba3c731851a481f78a3388c7f2cb9dce5 view | diff 
- The pylons_* paster template used the same string
  (``your_app_secret_string``) for the ``session.secret`` setting in the
  generated ``development.ini``.  This was a security risk if left unchanged
  in a project that used one of the templates to produce production
  applications.  It now uses a randomly generated string.
5 files modified
33 ■■■■■ changed files
CHANGES.txt 6 ●●●●● diff | view | raw | blame | history
pyramid/paster.py 21 ●●●●● diff | view | raw | blame | history
pyramid/paster_templates/pylons_basic/development.ini_tmpl 2 ●●● diff | view | raw | blame | history
pyramid/paster_templates/pylons_minimal/development.ini_tmpl 2 ●●● diff | view | raw | blame | history
pyramid/paster_templates/pylons_sqla/development.ini_tmpl 2 ●●● diff | view | raw | blame | history