mulicheng wrote:
> I deployed a TG app to a server using the scgi method described
> above. In accordance with the note at the bottom about pre-forking
> and sessions, I changed my session management to use on-disk
> sessions.
>
> I just noticed that we are getting requests from unique computers,
> that somehow hi-jack existing sessions.. Someone will log in, and
> then I'll open the site and walla, I'm magically logged in as them.
This sounds like it has more to do with the how you have written your
application, or how you are using sessions. It could be a bug in the
on-disk session code in CherryPy, but I doubt it.
I also had lots of problems with "flup" for SCGI deployment, so we
wrote our own asyncore-based WSGI/SCGI server. We are using it for
Fast Track, and haven't had those kind of weird issues. You might
want to grab the code from Fast Track, and try using it on your own
application to see if it helps:
http://cleverdevil.org/fasttrack/
Good luck!
--
Jonathan LaCour
http://cleverdevil.org
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"TurboGears" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at http://groups.google.com/group/turbogears
-~----------~----~----~----~------~----~------~--~---
