Reputation: 19
Use sessions in django in order to check if someone is loged in or not
I tried to create a dictionary key in the request.session:
request.session['key'] = 1232354
When a user navigate into the website, I check if they have the key in order to know if they are logged in.
I'm new to Django and I am afraid that there is some big cons in this idea, like easily getting the web site hacked or something. Is there anything wrong about this idea?
Upvotes: 0
Views: 213
Answers (1)
Reputation: 163
I hate to be the "use X library" guy, but if you're using Django you should be using django.contrib.auth for handling authentication rather than rolling your own, unless you're very experienced with web development and computer security. Authentication is very sensitive in terms of security and Django's authentication system is very well-done and is IMO one of the main strengths of the framework.
Upvotes: 2
Related Questions
- Test that user was logged in successfully
- How to check if a user is logged in (how to properly use user.is_authenticated)?
- Check if there is someone logged in Django
- django session check for existance
- how to check whether user is logged in or not
- Django - Checking if user has logged in before
- Always check if user is logged in
- Django: How to test if a user is currently logged in
- How do I check if a 'different' user is logged in in django?
- How can I know if a specific user, not the current requesting user, is logged in Django?