Questions tagged [session]
The session tag has no summary.
106 questions
1vote
1answer
552views
Should I store session id in server database?
I wanted to implement login system using flask framework. I managed to do this using sessions and set them to expire after 31 days and it works (sessions are created using server secret key, timestamp ...
1vote
0answers
93views
Architecture Design using Queue and JWT Token for session management
I am planning to design a microservice system architecture for a ticketing platform. It will be similar to "TicketMaster". Here is the flow of my architecture: client web browser API ...
- 11
0votes
1answer
530views
Optimal way Implement a Session Cache
I have an App that connects with Salesforce and do different operations. So I'm trying to implement a Session Cache for the Application to avoid repetitive login calls. So far what I have done is I ...
- 11
0votes
1answer
1kviews
Session Handover via OpenID Connect between a Mobile Application and a Website?
I am trying to assess secure ways to implement a session handover between an app and a website in the same company ecosystem. The Setup Mobile Application A and Website B use the same company OpenID ...
- 103
1vote
0answers
165views
Managing user session state with Google Sign In
I need some help with my authentication design. Happy to share any code as needed... Overview I have implemented the Google Sign-in (new web implementation here) button in my client web application. ...
0votes
1answer
44views
When dealing with session level data in a web app, is it better to maintain a static store of that data, or pass it around as needed?
I have a web app that is capable of connecting to multiple databases that are identical in structure but contain different data; each of our clients who uses the app gets their own copy of the ...
- 567
0votes
1answer
489views
HTTPSession for session state in web APIs?
We are building a set of web APIs. The web APIs are called by clients & can call each other. State is required by these APIs for the users session (e.g. shopping basket type stuff). The state ...
1vote
1answer
661views
How to handle authentication & authorization inside microservices
Example Application I will try to explain my problem by using a familiar application. Lets'say I'm building a Discord / Slack / Microsoft Teams clone; and for simplicity’s sake, it will contain 2 ...
- 173
1vote
0answers
279views
Paginate large data and store in temporary table for navigation
I have implemented pagination using SQL and stored that result of search into temporary table. Temporary table is named after unique tab id. So that other tab can have seperate result sets. That ...
0votes
1answer
3kviews
Is it good practice to save an entire ViewModel in Session (C# ASP.NET MVC)
I have an C# MVC Application which is basically a large application form. We are using a large ViewModel to store all the information the user enters as they pass through multiple steps in the ...
- 101
1vote
0answers
36views
Spring Security SAML and RSA session
This is probably a design/architectural question. My app uses RSA initiated SSO using SAML for authentication and from there on my app uses its own session to manage the request. There is a flaw in ...
- 119
1vote
4answers
119views
How can I store an user's capabilities to boost performance while allowing real-time updates of said capabilities?
I'm ingesting 150 objects that each require an user capabilities check, the function isUserAdmin tells me whether or not an user is an admin or not. Inside this function, there's a lot of deeper ...
- 85
2votes
1answer
371views
Using Django Sessions when views are accessed by API
I'm making an app which is a Django backend and a React frontend (being developed by someone else). The plan currently is to fully decouple the two and have them communicate over API. However, I would ...
- 229
2votes
0answers
50views
How authorize web application and manage sessions
i am building a single page react app that uses redux as state manager and an express node js as backend server but i don't know what is the best way to authorize my users in the application! if it ...
- 129
0votes
0answers
59views
Is it a good practice to store session in two different places?
I have a use case like this and I am wondering if this solution is a good practice or not. Say I have a website called dashboard.com and this is only for US region. When users login here, I am ...
