(self, app: Flask)
| 301 | session_class = SecureCookieSession |
| 302 | |
| 303 | def get_signing_serializer(self, app: Flask) -> URLSafeTimedSerializer | None: |
| 304 | if not app.secret_key: |
| 305 | return None |
| 306 | |
| 307 | keys: list[str | bytes] = [] |
| 308 | |
| 309 | if fallbacks := app.config["SECRET_KEY_FALLBACKS"]: |
| 310 | keys.extend(fallbacks) |
| 311 | |
| 312 | keys.append(app.secret_key) # itsdangerous expects current key at top |
| 313 | return URLSafeTimedSerializer( |
| 314 | keys, # type: ignore[arg-type] |
| 315 | salt=self.salt, |
| 316 | serializer=self.serializer, |
| 317 | signer_kwargs={ |
| 318 | "key_derivation": self.key_derivation, |
| 319 | "digest_method": self.digest_method, |
| 320 | }, |
| 321 | ) |
| 322 | |
| 323 | def open_session(self, app: Flask, request: Request) -> SecureCookieSession | None: |
| 324 | s = self.get_signing_serializer(app) |
no test coverage detected