One more example
Armin Ronacher
12 years ago
31 | 31 | |
32 | 32 | - You can serialize and sign a user ID for unsubscribing of newsletters |
33 | 33 | into URLs. This way you don't need to generate one-time tokens and |
34 | store them in the database. | |
34 | store them in the database. Same thing with any kind of activation | |
35 | link for accounts and similar things. | |
35 | 36 | - Signed objects can be stored in cookies or other untrusted sources |
36 | 37 | which means you don't need to have sessions stored on the server which |
37 | 38 | reduces the number of necessary database queries. |