[
https://issues.apache.org/jira/browse/ARROW-10427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17223664#comment-17223664
]
David Li commented on ARROW-10427:
----------------------------------
One thing to note is that we'd have to take care that the client can't modify
the session. I also wonder if there's libraries we can take advantage of for
this, like itsdangerous in Python. (We may want to consider a flight-contrib
module at that point, though.)
> Add optional session headers
> -----------------------------
>
> Key: ARROW-10427
> URL: https://issues.apache.org/jira/browse/ARROW-10427
> Project: Apache Arrow
> Issue Type: New Feature
> Components: Java
> Affects Versions: 2.0.0
> Reporter: Tiffany Lam
> Priority: Major
> Original Estimate: 96h
> Remaining Estimate: 96h
>
> * Add a client middleware which receives and re-uses a session token from the
> server.
> * Add a server middleware which, when encountering a request with no session
> header, creates a session on the backend, generates a token for it, and sends
> the token to the client in a header. The client can re-use this as indicated
> above.
> * If the client has a session header, re-use the same session from the
> backend (report an error if an invalid session was used).
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
