Disabling session protection

P-T-I · Jul 26, 2022 · 19148a2 · 19148a2
1 parent b17e1f8
commit 19148a2
Show file tree

Hide file tree

Showing 4 changed files with 3 additions and 14 deletions.
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-2.7
+2.8
diff --git a/spectacles/webapp/VERSION b/spectacles/webapp/VERSION
@@ -1 +1 @@
-2.7
+2.8
diff --git a/spectacles/webapp/run.py b/spectacles/webapp/run.py
@@ -48,9 +48,6 @@ def create_app(version):
     app.config["SQLALCHEMY_POOL_RECYCLE"] = 299
     app.config["SQLALCHEMY_POOL_TIMEOUT"] = 20
 
-    # Cache-control
-    app.config["SEND_FILE_MAX_AGE_DEFAULT"] = 300
-
     if not config.DEBUG:
         app.config["SESSION_COOKIE_NAME"] = "spectacles.session"
         app.config["SESSION_COOKIE_SECURE"] = True
@@ -86,7 +83,7 @@ def create_app(version):
     login_manager.login_message = "You must be logged in to access this page!!!"
     login_manager.login_message_category = "danger"
     login_manager.login_view = "auth.func_login"
-    login_manager.session_protection = "strong"
+    login_manager.session_protection = None
 
     from spectacles.webapp.home import home as home_blueprint
 

diff --git a/wsgi.py b/wsgi.py
@@ -3,14 +3,6 @@
 
 monkey.patch_all()
 
-# additional monkey patch for allowing self-signed certificates
-import ssl
-
-ctx = ssl.create_default_context()
-ctx.check_hostname = False
-ctx.verify_mode = ssl.CERT_NONE
-ssl._create_default_https_context = ctx
-
 import click
 from flask.cli import with_appcontext
 import logging