We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
稍微跟了一下,gorilla对cookie的处理中,只是用key把session id解出来 然后去找对应的文件读取用户的信息
所以只有在知道session id的情况下才能伪造用户cookie 导致API2: Broken authentication无法正常工作 虽然/static/sessions/路由能看到id,但与预期解法不一致了
The text was updated successfully, but these errors were encountered:
No branches or pull requests
稍微跟了一下,gorilla对cookie的处理中,只是用key把session id解出来
然后去找对应的文件读取用户的信息
所以只有在知道session id的情况下才能伪造用户cookie
导致API2: Broken authentication无法正常工作
虽然/static/sessions/路由能看到id,但与预期解法不一致了
The text was updated successfully, but these errors were encountered: