In my experience, even SameSite None is not sufficient to use cookies
in cross-site iframes. Safari doesn't allow those cookies to be sent
unless you visit the site directly first. I've heard movements for
Firefox and/or Chrome having similar behavior, but I haven't been
working with iframes re
Hello Everyone,
Looks like lax will do the trick, but it's not like there aren't legit
cases for same-site policy to be set to something less restrictive.
I agree. In my experience there are legitimate cases for setting
SameSite=None, especially concerning iframes.
Specifically, when develo
I’m -0 on the change. I could move to +0 if I understood why the use
case described here requires watching additional files.
A different use case we've run into is non-python configuration files.
Our settings.py reads a few variables off a toml file and it would be
nice if we could configure r
Given their sample code, my initial impression was that it was indeed
automatic. Looking a bit closer, there seems to be hardcoded logic
inside the DataSource (the thing I'm assuming provides getAllUserIds and
getUsernameById) to specifically fetch all ids and then all names for
those ids. So t
Completely unscientific microbenchmarks:
([gist](https://gist.github.com/stratoukos/dcde41ee0903dcdd577a))
>>> from timeit import Timer
## creation
# tuple
>>> Timer('(1, 2, 3, 4, 5)').timeit()
0.02694106101989746
# namedtuple with args
>>> Timer('T(1, 2, 3, 4, 5)', se
On 20 Sep 2013, at 9:55, Russell Keith-Magee wrote:
On Fri, Sep 20, 2013 at 2:41 PM, Marc Tamlyn
wrote:
This is partly because there's no obvious correct implementation of
them ;)
Yes, I think these views should exist. But they go with the same body
of
work as handling multiple forms, inl
On Wed, 04 Apr 2012 19:25:26 +0300, Adrian Holovaty
wrote:
Hi Stratos,
The core team is going to take the lead on the auth.User refactoring
-- specifically, yours truly. :-)
Given that the Summer of Code policy prohibits code contributions from
non-students (right?), I don't think the User
Hello,
I'm apologizing for replying to my own post, but there are only two days
left before GSoC's submission deadline and my proposal has received very
little feedback.
Since other proposals about contrib.auth are being discussed, I was
wondering if mine has any merit and whether I should sub
On Fri, 30 Mar 2012 17:35:16 +0300, Tom Evans
wrote:
On Fri, Mar 30, 2012 at 10:39 AM, Stratos Moros
wrote:
You can read the proposal nicely formatted here:
https://gist.github.com/8dd9fb27127b44d4e789
Hi Stratos
It's a long proposal, so this is a brain dump of bits that I
You can read the proposal nicely formatted here:
https://gist.github.com/8dd9fb27127b44d4e789
GSoC 2012 Proposal - enhanced contirb.auth
==
Hello, my name is Stratos Moros and I am a Computer Science student in the
University of Piraeus in Greece.
I
rejected.
That said, I believe that my proposal, when completed, will address most
of the issues people are raising against the idea of pluggable user models.
My question is whether I should continue writing/developing my proposal or
is this something that has no chance of being accepted?
11 matches
Mail list logo
