Questions tagged [session]
The session tag has no summary.
106 questions
1
vote
1
answer
694
views
Should I store session id in server database?
I wanted to implement login system using flask framework. I managed to do this using sessions and set them to expire after 31 days and it works (sessions are created using server secret key, timestamp ...
- 21
1
vote
0
answers
108
views
Architecture Design using Queue and JWT Token for session management
I am planning to design a microservice system architecture for a ticketing platform. It will be similar to "TicketMaster". Here is the flow of my architecture:
client web browser
API ...
- 11
0
votes
1
answer
590
views
Optimal way Implement a Session Cache
I have an App that connects with Salesforce and do different operations. So I'm trying to implement a Session Cache for the Application to avoid repetitive login calls.
So far what I have done is I ...
- 11
0
votes
1
answer
1k
views
Session Handover via OpenID Connect between a Mobile Application and a Website?
I am trying to assess secure ways to implement a session handover between an app and a website in the same company ecosystem.
The Setup
Mobile Application A and Website B use the same company OpenID ...
- 103
1
vote
0
answers
182
views
Managing user session state with Google Sign In
I need some help with my authentication design. Happy to share any code as needed...
Overview
I have implemented the Google Sign-in (new web implementation here) button in my client web application. ...
0
votes
1
answer
51
views
When dealing with session level data in a web app, is it better to maintain a static store of that data, or pass it around as needed?
I have a web app that is capable of connecting to multiple databases that are identical in structure but contain different data; each of our clients who uses the app gets their own copy of the ...
- 577
0
votes
1
answer
526
views
HTTPSession for session state in web APIs?
We are building a set of web APIs. The web APIs are called by clients & can call each other.
State is required by these APIs for the users session (e.g. shopping basket type stuff). The state ...
1
vote
1
answer
680
views
How to handle authentication & authorization inside microservices
Example Application
I will try to explain my problem by using a familiar application.
Lets'say I'm building a Discord / Slack / Microsoft Teams clone; and for simplicity’s sake, it will contain 2 ...
- 173
1
vote
0
answers
312
views
Paginate large data and store in temporary table for navigation
I have implemented pagination using SQL and stored that result of search into temporary table.
Temporary table is named after unique tab id.
So that other tab can have seperate result sets.
That ...
0
votes
1
answer
3k
views
Is it good practice to save an entire ViewModel in Session (C# ASP.NET MVC)
I have an C# MVC Application which is basically a large application form. We are using a large ViewModel to store all the information the user enters as they pass through multiple steps in the ...
- 101
1
vote
0
answers
42
views
Spring Security SAML and RSA session
This is probably a design/architectural question.
My app uses RSA initiated SSO using SAML for authentication and from there on my app uses its own session to manage the request. There is a flaw in ...
- 119
1
vote
4
answers
137
views
How can I store an user's capabilities to boost performance while allowing real-time updates of said capabilities?
I'm ingesting 150 objects that each require an user capabilities check, the function isUserAdmin tells me whether or not an user is an admin or not. Inside this function, there's a lot of deeper ...
- 85
2
votes
1
answer
407
views
Using Django Sessions when views are accessed by API
I'm making an app which is a Django backend and a React frontend (being developed by someone else). The plan currently is to fully decouple the two and have them communicate over API. However, I would ...
- 229
2
votes
0
answers
55
views
How authorize web application and manage sessions
i am building a single page react app that uses redux as state manager and an express node js as backend server but i don't know what is the best way to authorize my users in the application!
if it ...
- 129
0
votes
0
answers
76
views
Is it a good practice to store session in two different places?
I have a use case like this and I am wondering if this solution is a good practice or not.
Say I have a website called dashboard.com and this is only for US region. When users login here, I am ...
- 109