tie csrf token lifetime to session

UtrechtUniversity · Dec 4, 2024 · fa259e0 · fa259e0
1 parent 4656a29
commit fa259e0
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/app.py b/app.py
@@ -153,7 +153,7 @@ def load_admin_setting() -> Dict[str, Any]:
 
 # CSRF protection.
 csrf = CSRFProtect(app)
-
+app.config['WTF_CSRF_TIME_LIMIT'] = None  # Set CSRF token lifetime tied to the life of the session.
 
 @app.before_request
 def static_loader() -> Optional[Response]: