[Zope] Save a password encripted in a cookie

Andreas Jung lists at andreas-jung.com
Tue Sep 14 11:30:55 EDT 2004



--On Dienstag, 14. September 2004 14:46 Uhr +0200 Martin Koekenberg 
<zope at digital-adventures.nl> wrote:

> Hello,
>
> I want to store a username and a password in a cookie on the users
> system. This for an auto login feature.
>
> How can I encript & decript a password / variable in Zope / Python ?

You really don't want to send user+password encrypted or unencrypted as 
cookie.
This is a very bad practise! Instead you might send some token e.g. like 
the __ac
token used by Zope.

-aj




More information about the Zope mailing list