This guy doesn't waste any time with superfluous detail or pontificating on random design features. Just gives you exactly what you need to understanding the fundamentals. Quite a gifted teacher IMHO. Thanks for the help!

Clear narration - precise and to the point - yet explains it properly -

Great explanation skills, Thanks. Yet, for that particular topic, these are client side sessions that are stored in a cookie, and not stored on the server side. They are encoded and not encrypted. The secret key is to cryptographically sign them.

Thanks for the tutorial. I just would like to clarify that the session object imported from flask is actually a client-side session, meaning that the data are stored in the client browser, not in the server as you said at the beginning of the video.

The amount of happiness I get when I was stuck, then finally came out of the issue is immacluate. Thanks for the help!

this tutorial is helping me more in my mid-term project than the classes themselves, thank you sooo much

I'm using your Flask course as a jumping point into learning Python and eventually cybersecurity and ethical hacking with python. I just wanted some foundations into building simple web apps, learning the Python lang, and this is helping me a ton get my foot in the door into what I want to eventually learn with more in-depth courses later. TY!

Dude. All of your tutorials is top-class material. I'm extremely thankful for all of the things you've taught me. It's simple and precise! THANK YOU! :)

explaining the session and the purpose of secret key was more clear than any other I heard. Thanks

This was so great. I've searched the internet for hours and you're the first person to actually help me.

When you use pop on a dictionary, the first argument is the key which you want to delete. When you use pop it will return the value associated with that key. If the first argument is not found as a key, it will return the second argument. You can then assign the returned value to a variable the same as with popping from a list. Most of the time you know the key exists though, so you just put None as the second argument.

congratulations my young man, not only you are super smart, but extremely well articulated...

whatever coding tutorial i search for there are a bunch of tutorials in results and many of them has more views that techwithtim ones but eventhough i choose tim

Just wanted you to know this was the only video/web page that properly described the use of sessions without either being voerly complex, or just plain wrong. Thanks!!

Short, sweet, simple, straight to the point Love it !

This was exactly what I was searching for......Thanks a lot

Great tutorial, great and clear voice for easy to understand

Your tutorials are excellent. Thanks

Tim you are very dear to me, I love you bro. Your family should be very proud of you. You've got a very great channel.

Tim I believe the session is stored on the browser, and is encrypted with the secret key. They browser sends the session with the request.

Tim you are literally saving me, thank youuu so so so much for your help u are my favourite ❤️❤️

Your skills are just amazing for beginners ❤️❤️❤️ love from india

Thats exacly what I was looking for!

9:38 Thanks Bro That's Quite Interesting .Upload more videos.Our Support with you...

One of the best tutorials for flask!!

Great tutorial!!! I wasn't even halfway through the video and already found the solution to my problem

Outstanding, very clear, thank you.

You just saved my day! Thanks man.

Thank's Tim. Great tutorial

This video just saved me ... Thank you so

Thanks Tim. You are a life-saver bro!

Tim is so awesome! Have no words to describe! Thanks mate!

The standard flask session is stored client side, not server side.

Awesome content. Parts 1-5 have a TEXT version which I prefer over just plain video. Are parts 6+ going to have a text version too? Seems they aren't linked after part 5.

I am so happy that this got recommended to me

Thanks! you save my life from headache :)

Thank you for making these!

Hi Tim, this is great but these sessions are for client side storage (cookies) , can you tell us how to use server side session. Because client side sessions have a very small size limit. I want to store a dataframe in sessions. Can you tell something about the same?

In 5:00, what’s the difference between redirected back to the login page “return redirect(url_for(login))” v.s rendering the login page via “render_template(‘login.html’)”?

Tim, flask series is excellent. And very much helpful.

Ye... im going to read all flask docs... hey better idea!! lets just chill and let tim explain that for us :D!!! THANKS TIM THANK YOU VERY MUCH, PEACE!

Nice tuts..Really appreciate your efforts. It makes Python on the web feel like a breeze. Thanks a lot Tim!

awesome again! kindly keep making advanced Flask tutorials...

The best teacher

Thanks 😊 really helpful

very useful! thanks mate

Hey Tim i'm your regular viewer because your's way of teaching is so simple and to the point but in this video you have done something which is very confusing that you have created a variable and a function with same name "user" and it's confusing to understand that where you are using function and where you're using var

Flask indeed doesn't store session on server, unless you use Flask-Sessions which does allow you server stored sessions

Thanks man really appreciate your tutorial

Great video and super helpful, thank you a ton Tim!

really easy thanks!

Thanks for all your work, really good contents

But is session stored in the server? Is that a new thing? I know of Flask-Session which is used for making it server side, but maybe that's superfluous now? Great video btw, very clear and useful.

Thanks Tim, it helps me alot!

Very Good tutorial

great video tim

So far Im loving backend more than frontend

it was not working at my end... and how is this session different from flask_session? would be nice if u run 2 app side by side explaining this.... which one to prefer session or flask_session?

Thank you very much for this video! I learnt a lot from this :)

nice and very helpful

This is a really good tutorial overall, but I think the permanent session was poorly explained. My website behaves in a different way than you described. Before the session variable was imported from flask, I stayed logged in unless I manually changed the url to /logout or closed the flask app. For example I could close the browser, reopen and do different things on the website or do nothing and still would be logged in. After importing the session variable and setting the value of app.permanent_session_lifetime to timedelta(seconds=10) for testing purposes, I got the following result. After logging in, every GET request resets the timer. For example, I can close the browser for 9 seconds, than open it up quickly before the session is lost, and then refresh every 9 seconds to stay logged in.

I just watched your flappy bird video and I have a question. How did you learn ml ? Did you have it in uni or did you just learn it by yourself? I learned the basics of python on my own but when I tried to dabble into ml I got discouraged. It seemed like only a person that that is in computer engineering at uni could truly understand ml. Is there any hope for self teaching ml? And thanks for the amazing videos btw.

really helpful tutorial thanks

I love you brov i never understood how get post sessions worked

Don't store anything that really needs to be secure/private in the session key, as they are simply base64 encoded and easily deciphered/exposed. However, if the value is altered {"user":"mary"}, re-encoded in base64 and then the session cookie value edited, the session will become invalid (this is good), kindof like JWT.

Amazing video, thank you!

I think this is exactly what i need for missing the first 8 weeks of lectures and work from my university lmao.

Hey Tim, I enjoy your tutorial but I have to lower the speed from normal to 0.75. English is my 3rd language.

Back button returns to session even after logout Please help me

Obrigado

Sir my session is not deleted when i closed browser and open again...Session stored the value permanantly and also i am not used app.permanent_session_lifetime yet.?? please help me to solve this issue.

So cookies not needed? Done in background when you use session object?

i followed this video every step of the way and found an issue....when i close my browser...the session stil remains....help please

this is very helpfull ,can you say how to add one more field that would be very very more helpfull than.

awesome!

Hi Tim 1... Is it possible to have a secret_key for each session???? 2... Let's say my session's diccionay has more than 2 elements being "user" one of them ... by using session.pop("user", None) I will erase the whole session or just the element "user" in its diccionary?

Nice one Tim!

waw so good thnkyou

thanku man keep coding

thx, very usefull

Love u bro

Thanks for this! I'm playing with sessions, trying to increment a session variable (day counter, for instance) by 1 with every POST request, but for some reason it is NOT kept in the session's "memory" for the next "POST". What am I doing wrong? Is Sessions the way to go about it, or do I need a DB?

For some reason my session data doesn't delete when I close the browser or even when I shut down the program and reload it, please someone help!!!

What language you did use to create website techwithtim.net

Hey Tim, I'd like to know if its possible to create an alert when the session timeout occurs, for example a prompt alert stating that, "You have been logged out". How do you go about doing it? Thanks.

Hi tim, just one question. Since the python file is basically the server (right?), does everyone who goes to your webpage basically get handed this code or is there just one version of this code that everyone goes to

Would it be ok to place an instance of a class in a session? Like I have a quiz web app and I want all the routes to be able to communicate with each other by using a class. I don't want to just initialize the class because then, a lot of users will be using the same class. So I thought of creating an instance inside a route, placing it inside a session and getting that session in a different route? Is that safe?

Please are you using a private browser. Because it seems flask stores sessions as cookies on the browser which are still persistent even after the browser is closed in my case

great stuff

thanks bro :)

i was screwing around with the login page and i found a vulnerability. if you type alert("Hello World!") it will pop up on the page an alert using javascript

best tnx

is not workin if i try to run it it shows me an error

At 7:09, I tried the same code, with /user page Im still getting session user data displayed. It doesnt redirect to login page. Am I missing something here ? Tried to close and open the browser. Code: @app.route("/login", methods=["POST", "GET"]) def login(): if request.method == "POST": user = request.form["nm"] session["user"] = user return redirect(url_for("user")) else: return render_template("login.html") @app.route("/user") def user(): if "user" in session: user = session["user"] return f"{user}" else: return redirect(url_for("login"))

I have a question, can we put more than an element in the session if I have more than a single information like storing both name and password? Or I should create an another session that contains password.

Hey Tim, can you help me with flask+webcam+socketio? Any example tutorial to understand and club them so that each user can launch the app and give the data

Hello Tim, thank you for the tutorial, do you have any tutorial about Flask Authenticating Using JSON Web Tokens, if not is it possible to create one for us? Thanks.

if you press backspace after logout, you land back to the accounts page.... why? logically we should not be able to go back to account page after logout, but this code lets u the access after pressing backspace

For some reason, when I open the web again, if I have logged in with my name then the user page still displays my name!!

Hi, can you explain, how to shut down the development / built-in server of flask without using ctrl+c? Is there a way to code it in the python script?