Hi, On a user login, the session key changes. This makes the data stored in the session before user logging in, inaccessible.
But the session data before user login is required in so many cases, say for instance, a shopping cart. How to pass the session data of the anonymous user to the logged in user? ----- Not exactly the same, but on a related note, when the anonymous user makes a post request to a @login_required view, how to preserve the post data. Currently, it seems like the post data is discarded. On googling, I found that this was a feature in the earlier django release, but removed due to some security vulnerability: http://www.djangoproject.com/weblog/2008/sep/02/security/ With signed cookies and the like that are done recently, is it still a vulnerability? -- Regards, Lakshman becomingguru.com --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to django-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
