1👍
✅
The only way to extend session life is through longer-lived cookies. Every other method of user identification (e.g. IP + user-agent) suffers from ambiguity and, therefore, has security issues.
1👍
I created a simple middleware that updates user session cookies periodically, which eliminates the described problem.
- [Answered ]-Writing user.get_profile() custom function which should create auth profile if there is not any
- [Answered ]-Display uploaded files in Django
Source:stackexchange.com