[core] Protect session data from unwanted loading.
Use specialised Session and Connection types that forward their 'data' and
'session_data' attributes to the pyramid request.session attribute.
This forwarding is done with properties, instead of copying a reference, which
allow to access request.session (and the session factory) if and only if
Session.data or Connection.session_data is accessed.
In some cases, most notably the static resources requests, it can mean no
access the session during the request handling, which saves a request to the
session persistence layer.
Closes #4891437
0.2.1 (2015-01-23)
------------------
- Fix cors 'methods' and 'headers' parameters passing (:issue:`4849874`).
0.2.0 (2015-01-21)
------------------
- Create a documentation (:issue:`4849313`)
- Fix cors 'origin' parameter passing (:issue:`4783343`)
- Fix configuration loading when 'cubicweb.includes' is not set
(:issue:`4849314`)
- Move auth-related code to :mod:`pyramid_cubicweb.auth`.
- Add profiling tools
- Cleanups
0.1.3 (2014-12-08)
------------------
- Fix cookies max_age (:issue:`4731764`)
0.1.2 (2014-11-15)
------------------
- Fix excessive rollbacks on HTTPSuccessful or HTTPRedirection
(:issue:`4566482`)
0.1.1 (2014-11-02)
------------------
- Have `CWUser.last_login_time` properly updated (:issue:`4549891`)
0.1.0 (2014-10-23)
------------------
Initial release
- Provides a pyramid-based authentication and session management for a
cubicweb instance.
- Run a cubicweb instance as a pyramid application