equal
deleted
inserted
replaced
196 |
196 |
197 session_secret = settings.get( |
197 session_secret = settings.get( |
198 session_prefix + 'secret', 'notsosecret') |
198 session_prefix + 'secret', 'notsosecret') |
199 persistent_secret = settings.get( |
199 persistent_secret = settings.get( |
200 persistent_prefix + 'secret', 'notsosecret') |
200 persistent_prefix + 'secret', 'notsosecret') |
201 if 'notsosecret' in (session_secret, persistent_secret): |
201 if ('notsosecret' in (session_secret, persistent_secret) |
|
202 and config.registry['cubicweb.config'].mode != 'test'): |
202 warnings.warn(''' |
203 warnings.warn(''' |
203 |
204 |
204 !! SECURITY WARNING !! |
205 !! SECURITY WARNING !! |
205 |
206 |
206 The authentication cookies are signed with a static secret key. |
207 The authentication cookies are signed with a static secret key. |