chg: [authentication] added flask session secret

2019-10-02 16:34:27 -04:00 · 2019-10-02 16:34:27 -04:00 · a0ccff71ef
parent e18728e8b1
commit a0ccff71ef
2 changed files with 4 additions and 1 deletions
--- a/config/config.cfg.default
+++ b/config/config.cfg.default
@ -6,6 +6,7 @@ debug = False
 [Auth]
 misp_fqdn = "https://misp.local"
 ssl_verify = True
+session_secret = **Change_Me**

 [Dashboard]
 #hours
--- a/server.py
+++ b/server.py
@ -34,9 +34,11 @@ server_host = cfg.get("Server", "host")
 server_port = cfg.getint("Server", "port")
 server_debug = cfg.get("Server", "debug")
 auth_host = cfg.get("Auth", "misp_fqdn")
-auth_ssl_verify = cfg.get("Auth", "ssl_verify")
+auth_ssl_verify = cfg.getboolean("Auth", "ssl_verify")
+auth_session_secret = cfg.get("Auth", "session_secret")

 app = Flask(__name__)
+app.secret_key = auth_session_secret

 redis_server_log = redis.StrictRedis(
        host=cfg.get('RedisGlobal', 'host'),