PyPI - django-session-security-continued - Versions diffs - 3.0.0a1__tar.gz - Mend

django-session-security-continued 3.0.0a1__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (30) hide show

django_session_security_continued-3.0.0a1/LICENSE ADDED Viewed

@@ -0,0 +1,22 @@
+MIT License
+Copyright (c) 2018 YourLabs
+Copyright (c) 2025 Arrai Innovations Inc.
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

django_session_security_continued-3.0.0a1/PKG-INFO ADDED Viewed

@@ -0,0 +1,209 @@
+Metadata-Version: 2.4
+Name: django-session-security-continued
+Version: 3.0.0a1
+Summary: Client and server-side session timeout enforcement with warnings for Django 4.2+.
+Author: Matt Bosworth (https://github.com/mattbo), Fabio Caritas Barrionuevo da Luz (https://github.com/luzfcb), Pēteris Caune (https://github.com/cuu508), John David Giese (https://github.com/johndgiese), Jose Antonio Martin Prieto (https://github.com/jantoniomartin), Richard Moorhead (https://github.com/autodidacticon), Jean-Michel Nirgal Vourgère (https://github.com/nirgal), Michał Pasternak (https://github.com/mpasternak), James Pic (https://github.com/jpic), Matthew Schettler (https://github.com/mschettler), Scott Sexton (https://github.com/scottsexton), Jacek Ostański (https://github.com/jacoor), Aaron Krill (https://github.com/krillr), @yscumc (https://github.com/yscumc), Marco Fucci (https://github.com/marcofucci), Andrei Coman (https://github.com/comandrei), Ali Hasan Imam (https://github.com/alihasanimam), Joel Hillacre (https://github.com/jhillacre), Peter Mack (https://github.com/pmack)
+Maintainer-email: Arrai Innovations <support@arrai.com>
+Project-URL: repository, https://github.com/arrai-innovations/django-session-security-continued
+Classifier: Development Status :: 5 - Production/Stable
+Classifier: Environment :: Web Environment
+Classifier: Framework :: Django
+Classifier: Framework :: Django :: 4.2
+Classifier: Framework :: Django :: 5.0
+Classifier: Framework :: Django :: 5.1
+Classifier: Framework :: Django :: 5.2
+Classifier: Intended Audience :: Developers
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Internet :: WWW/HTTP
+Classifier: Topic :: Software Development :: Libraries :: Python Modules
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: django<5.3,>=4.2
+Dynamic: license-file
+# django-session-security-continued
+[![code style: ruff][]][ruff] [![code style: prettier][]][prettier] ![ruff status][] ![pip-audit status][]
+![python 3.9 status][]
+![python 3.10 status][]
+![python 3.11 status][]
+![python 3.12 status][]
+![coverage status][]
+<!--prettier-ignore-start-->
+<!--TOC-->
+- [About](#about)
+- [Requirements / Compatibility](#requirements--compatibility)
+- [Installation](#installation)
+- [Single Sign-On (SSO) Considerations](#single-sign-on-sso-considerations)
+- [Development](#development)
+- [Testing](#testing)
+  - [JavaScript coverage](#javascript-coverage)
+- [Contributing](#contributing)
+<!--TOC-->
+<!--prettier-ignore-end-->
+## About
+A minimal JavaScript and Django middleware app that automatically logs out users after inactivity. It tracks activity across all browser tabs, warns users before logging them out, and protects sensitive data.
+Built for CRMs, intranets, and similar applications, it prevents abandoned sessions from staying open when users leave their workstations. Unlike simply setting session expiry, this approach ensures users aren’t logged out while reading, reviewing data, or filling out forms; preserving their work and reducing frustration while still enforcing inactivity-based security.
+This fork is maintained by Arrai Innovations Inc. based on the original [`django-session-security`](https://github.com/yourlabs/django-session-security) by Yourlabs.
+## Requirements / Compatibility
+- **Django:** 4.2, 5.2
+    - `django.contrib.staticfiles`
+- **Python:** 3.9, 3.10, 3.11, 3.12
+## Installation
+```console
+# Install the package
+$ pip install django-session-security-continued
+```
+```python
+# settings.py
+INSTALLED_APPS = [
+    # Add the app
+    'session_security',
+    # ...
+]
+MIDDLEWARE = [
+    # Make sure this comes AFTER the authentication middleware
+    'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'session_security.middleware.SessionSecurityMiddleware',
+    # ...
+]
+TEMPLATES = [
+    {
+        # ...
+        'OPTIONS': {
+            'context_processors': [
+                # Ensure this is present
+                'django.template.context_processors.request',
+                # ...
+            ],
+        },
+    },
+]
+# Optional settings (see configuration section for details)
+SESSION_SECURITY_WARN_AFTER = 540          # Warn user after 9 minutes
+SESSION_SECURITY_EXPIRE_AFTER = 600        # Log out after 10 minutes
+SESSION_SECURITY_PASSIVE_URLS = []         # URLs that won’t reset the timer
+SESSION_SECURITY_REDIRECT_TO_LOGOUT = False  # Set True for SSO setups
+SESSION_SECURITY_PING_URL = '/session_security/ping/'  # Activity endpoint
+SESSION_SECURITY_JS_PATH = 'session_security/script.js'  # Override to load custom bundles (tests/coverage)
+```
+```python
+# urls.py
+from django.urls import include, path
+urlpatterns = [
+    # Add this route to enable the session security endpoints
+    path('session_security/', include('session_security.urls')),
+    # ...
+]
+```
+```html
+<!-- base.html (or equivalent) -->
+{% load static %}
+...
+{% include "session_security/all.html" %}
+<script>
+    // optional: disable form discard confirmation dialog
+    sessionSecurity.confirmFormDiscard = undefined;
+    // optional: register custom activity
+    sessionSecurity.activity();
+</script>
+```
+## Single Sign-On (SSO) Considerations
+When using SSO, the default page reload after timeout may cause automatic re-login if the SSO session remains valid. Set `SESSION_SECURITY_REDIRECT_TO_LOGOUT = True` to explicitly end the app session by redirecting to `LOGOUT_REDIRECT_URL`. Note that this does **not** terminate the SSO provider session; configure a matching timeout on your SSO server for full coverage.
+## Development
+This project uses `uv` for managing the development environment. To set up the development environment, follow these steps:
+```console
+# Clone the repository
+$ git clone https://github.com/arrai-innovations/django-session-security-continued.git
+$ cd django-session-security-continued
+# Ensure a compatible Python (>=3.9) is installed
+# Install uv if not already installed
+$ pip install --user --upgrade uv
+# Create and sync the dev environment
+#  (default group includes dev dependencies)
+$ uv sync
+# (Optional) Run Git hooks setup
+$ uv run pre-commit install
+# Install JS tooling for the client bundle / coverage builds
+$ npm install
+```
+## Testing
+Chrome is required for the Selenium end-to-end tests (Selenium Manager will download the matching chromedriver automatically). Run the full suite with pytest:
+```console
+$ uv run pytest
+```
+If Chrome isn’t available (or you only want the fast unit tests), skip the browser suite with `uv run pytest -m "not selenium"`.
+Add extra breathing room to the Selenium waits (in CI) by exporting `SESSION_SECURITY_TIMEOUT_PADDING` (in seconds). For example, `SESSION_SECURITY_TIMEOUT_PADDING=5 uv run pytest -k selenium` gives each warning/expiry wait up to five additional seconds before failing.
+### JavaScript coverage
+We ship a Vite + Istanbul build that instruments the client bundle and collects coverage from the Selenium run:
+1. `npm run build:coverage`
+2. `SESSION_SECURITY_JS_COVERAGE=1 uv run pytest -k selenium`
+3. `npm run coverage:report` (writes reports to `coverage-js/` and `lcov.info`)
+The `SESSION_SECURITY_JS_COVERAGE` flag makes the Django test settings load the instrumented bundle and dumps `window.__coverage__` into `.nyc_output/` after each Selenium test.
+## Contributing
+Contributions are welcome. Please fork the repository and create a pull request with your changes. We reserve the right to review and modify your contributions before merging them into the main branch. By submitting a change you confirm that:
+- You wrote the code (or have the right to contribute it), and
+- You’re happy for it to be released under this project’s MIT license.
+[code style: ruff]: https://img.shields.io/badge/code%20style-ruff-000000.svg?style=for-the-badge
+[ruff]: https://docs.astral.sh/ruff/formatter/#style-guide
+[code style: prettier]: https://img.shields.io/badge/code_style-prettier-ff69b4.svg?style=for-the-badge
+[prettier]: https://github.com/prettier/prettier
+[python 3.9 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.9.svg
+[python 3.10 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.10.svg
+[python 3.11 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.11.svg
+[python 3.12 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.12.svg
+[coverage status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.9.coverage.svg
+[ruff status]: https://docs.arrai.dev/dssc/artifacts/main/ruff.svg
+[pipenv]: https://github.com/pypa/pipenv
+[pip-audit status]: https://docs.arrai.dev/dssc/artifacts/main/pip-audit.svg

django_session_security_continued-3.0.0a1/README.md ADDED Viewed

@@ -0,0 +1,179 @@
+# django-session-security-continued
+[![code style: ruff][]][ruff] [![code style: prettier][]][prettier] ![ruff status][] ![pip-audit status][]
+![python 3.9 status][]
+![python 3.10 status][]
+![python 3.11 status][]
+![python 3.12 status][]
+![coverage status][]
+<!--prettier-ignore-start-->
+<!--TOC-->
+- [About](#about)
+- [Requirements / Compatibility](#requirements--compatibility)
+- [Installation](#installation)
+- [Single Sign-On (SSO) Considerations](#single-sign-on-sso-considerations)
+- [Development](#development)
+- [Testing](#testing)
+  - [JavaScript coverage](#javascript-coverage)
+- [Contributing](#contributing)
+<!--TOC-->
+<!--prettier-ignore-end-->
+## About
+A minimal JavaScript and Django middleware app that automatically logs out users after inactivity. It tracks activity across all browser tabs, warns users before logging them out, and protects sensitive data.
+Built for CRMs, intranets, and similar applications, it prevents abandoned sessions from staying open when users leave their workstations. Unlike simply setting session expiry, this approach ensures users aren’t logged out while reading, reviewing data, or filling out forms; preserving their work and reducing frustration while still enforcing inactivity-based security.
+This fork is maintained by Arrai Innovations Inc. based on the original [`django-session-security`](https://github.com/yourlabs/django-session-security) by Yourlabs.
+## Requirements / Compatibility
+- **Django:** 4.2, 5.2
+    - `django.contrib.staticfiles`
+- **Python:** 3.9, 3.10, 3.11, 3.12
+## Installation
+```console
+# Install the package
+$ pip install django-session-security-continued
+```
+```python
+# settings.py
+INSTALLED_APPS = [
+    # Add the app
+    'session_security',
+    # ...
+]
+MIDDLEWARE = [
+    # Make sure this comes AFTER the authentication middleware
+    'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'session_security.middleware.SessionSecurityMiddleware',
+    # ...
+]
+TEMPLATES = [
+    {
+        # ...
+        'OPTIONS': {
+            'context_processors': [
+                # Ensure this is present
+                'django.template.context_processors.request',
+                # ...
+            ],
+        },
+    },
+]
+# Optional settings (see configuration section for details)
+SESSION_SECURITY_WARN_AFTER = 540          # Warn user after 9 minutes
+SESSION_SECURITY_EXPIRE_AFTER = 600        # Log out after 10 minutes
+SESSION_SECURITY_PASSIVE_URLS = []         # URLs that won’t reset the timer
+SESSION_SECURITY_REDIRECT_TO_LOGOUT = False  # Set True for SSO setups
+SESSION_SECURITY_PING_URL = '/session_security/ping/'  # Activity endpoint
+SESSION_SECURITY_JS_PATH = 'session_security/script.js'  # Override to load custom bundles (tests/coverage)
+```
+```python
+# urls.py
+from django.urls import include, path
+urlpatterns = [
+    # Add this route to enable the session security endpoints
+    path('session_security/', include('session_security.urls')),
+    # ...
+]
+```
+```html
+<!-- base.html (or equivalent) -->
+{% load static %}
+...
+{% include "session_security/all.html" %}
+<script>
+    // optional: disable form discard confirmation dialog
+    sessionSecurity.confirmFormDiscard = undefined;
+    // optional: register custom activity
+    sessionSecurity.activity();
+</script>
+```
+## Single Sign-On (SSO) Considerations
+When using SSO, the default page reload after timeout may cause automatic re-login if the SSO session remains valid. Set `SESSION_SECURITY_REDIRECT_TO_LOGOUT = True` to explicitly end the app session by redirecting to `LOGOUT_REDIRECT_URL`. Note that this does **not** terminate the SSO provider session; configure a matching timeout on your SSO server for full coverage.
+## Development
+This project uses `uv` for managing the development environment. To set up the development environment, follow these steps:
+```console
+# Clone the repository
+$ git clone https://github.com/arrai-innovations/django-session-security-continued.git
+$ cd django-session-security-continued
+# Ensure a compatible Python (>=3.9) is installed
+# Install uv if not already installed
+$ pip install --user --upgrade uv
+# Create and sync the dev environment
+#  (default group includes dev dependencies)
+$ uv sync
+# (Optional) Run Git hooks setup
+$ uv run pre-commit install
+# Install JS tooling for the client bundle / coverage builds
+$ npm install
+```
+## Testing
+Chrome is required for the Selenium end-to-end tests (Selenium Manager will download the matching chromedriver automatically). Run the full suite with pytest:
+```console
+$ uv run pytest
+```
+If Chrome isn’t available (or you only want the fast unit tests), skip the browser suite with `uv run pytest -m "not selenium"`.
+Add extra breathing room to the Selenium waits (in CI) by exporting `SESSION_SECURITY_TIMEOUT_PADDING` (in seconds). For example, `SESSION_SECURITY_TIMEOUT_PADDING=5 uv run pytest -k selenium` gives each warning/expiry wait up to five additional seconds before failing.
+### JavaScript coverage
+We ship a Vite + Istanbul build that instruments the client bundle and collects coverage from the Selenium run:
+1. `npm run build:coverage`
+2. `SESSION_SECURITY_JS_COVERAGE=1 uv run pytest -k selenium`
+3. `npm run coverage:report` (writes reports to `coverage-js/` and `lcov.info`)
+The `SESSION_SECURITY_JS_COVERAGE` flag makes the Django test settings load the instrumented bundle and dumps `window.__coverage__` into `.nyc_output/` after each Selenium test.
+## Contributing
+Contributions are welcome. Please fork the repository and create a pull request with your changes. We reserve the right to review and modify your contributions before merging them into the main branch. By submitting a change you confirm that:
+- You wrote the code (or have the right to contribute it), and
+- You’re happy for it to be released under this project’s MIT license.
+[code style: ruff]: https://img.shields.io/badge/code%20style-ruff-000000.svg?style=for-the-badge
+[ruff]: https://docs.astral.sh/ruff/formatter/#style-guide
+[code style: prettier]: https://img.shields.io/badge/code_style-prettier-ff69b4.svg?style=for-the-badge
+[prettier]: https://github.com/prettier/prettier
+[python 3.9 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.9.svg
+[python 3.10 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.10.svg
+[python 3.11 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.11.svg
+[python 3.12 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.12.svg
+[coverage status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.9.coverage.svg
+[ruff status]: https://docs.arrai.dev/dssc/artifacts/main/ruff.svg
+[pipenv]: https://github.com/pypa/pipenv
+[pip-audit status]: https://docs.arrai.dev/dssc/artifacts/main/pip-audit.svg

django_session_security_continued-3.0.0a1/django_session_security_continued.egg-info/PKG-INFO ADDED Viewed

@@ -0,0 +1,209 @@
+Metadata-Version: 2.4
+Name: django-session-security-continued
+Version: 3.0.0a1
+Summary: Client and server-side session timeout enforcement with warnings for Django 4.2+.
+Author: Matt Bosworth (https://github.com/mattbo), Fabio Caritas Barrionuevo da Luz (https://github.com/luzfcb), Pēteris Caune (https://github.com/cuu508), John David Giese (https://github.com/johndgiese), Jose Antonio Martin Prieto (https://github.com/jantoniomartin), Richard Moorhead (https://github.com/autodidacticon), Jean-Michel Nirgal Vourgère (https://github.com/nirgal), Michał Pasternak (https://github.com/mpasternak), James Pic (https://github.com/jpic), Matthew Schettler (https://github.com/mschettler), Scott Sexton (https://github.com/scottsexton), Jacek Ostański (https://github.com/jacoor), Aaron Krill (https://github.com/krillr), @yscumc (https://github.com/yscumc), Marco Fucci (https://github.com/marcofucci), Andrei Coman (https://github.com/comandrei), Ali Hasan Imam (https://github.com/alihasanimam), Joel Hillacre (https://github.com/jhillacre), Peter Mack (https://github.com/pmack)
+Maintainer-email: Arrai Innovations <support@arrai.com>
+Project-URL: repository, https://github.com/arrai-innovations/django-session-security-continued
+Classifier: Development Status :: 5 - Production/Stable
+Classifier: Environment :: Web Environment
+Classifier: Framework :: Django
+Classifier: Framework :: Django :: 4.2
+Classifier: Framework :: Django :: 5.0
+Classifier: Framework :: Django :: 5.1
+Classifier: Framework :: Django :: 5.2
+Classifier: Intended Audience :: Developers
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Internet :: WWW/HTTP
+Classifier: Topic :: Software Development :: Libraries :: Python Modules
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: django<5.3,>=4.2
+Dynamic: license-file
+# django-session-security-continued
+[![code style: ruff][]][ruff] [![code style: prettier][]][prettier] ![ruff status][] ![pip-audit status][]
+![python 3.9 status][]
+![python 3.10 status][]
+![python 3.11 status][]
+![python 3.12 status][]
+![coverage status][]
+<!--prettier-ignore-start-->
+<!--TOC-->
+- [About](#about)
+- [Requirements / Compatibility](#requirements--compatibility)
+- [Installation](#installation)
+- [Single Sign-On (SSO) Considerations](#single-sign-on-sso-considerations)
+- [Development](#development)
+- [Testing](#testing)
+  - [JavaScript coverage](#javascript-coverage)
+- [Contributing](#contributing)
+<!--TOC-->
+<!--prettier-ignore-end-->
+## About
+A minimal JavaScript and Django middleware app that automatically logs out users after inactivity. It tracks activity across all browser tabs, warns users before logging them out, and protects sensitive data.
+Built for CRMs, intranets, and similar applications, it prevents abandoned sessions from staying open when users leave their workstations. Unlike simply setting session expiry, this approach ensures users aren’t logged out while reading, reviewing data, or filling out forms; preserving their work and reducing frustration while still enforcing inactivity-based security.
+This fork is maintained by Arrai Innovations Inc. based on the original [`django-session-security`](https://github.com/yourlabs/django-session-security) by Yourlabs.
+## Requirements / Compatibility
+- **Django:** 4.2, 5.2
+    - `django.contrib.staticfiles`
+- **Python:** 3.9, 3.10, 3.11, 3.12
+## Installation
+```console
+# Install the package
+$ pip install django-session-security-continued
+```
+```python
+# settings.py
+INSTALLED_APPS = [
+    # Add the app
+    'session_security',
+    # ...
+]
+MIDDLEWARE = [
+    # Make sure this comes AFTER the authentication middleware
+    'django.contrib.auth.middleware.AuthenticationMiddleware',
+    'session_security.middleware.SessionSecurityMiddleware',
+    # ...
+]
+TEMPLATES = [
+    {
+        # ...
+        'OPTIONS': {
+            'context_processors': [
+                # Ensure this is present
+                'django.template.context_processors.request',
+                # ...
+            ],
+        },
+    },
+]
+# Optional settings (see configuration section for details)
+SESSION_SECURITY_WARN_AFTER = 540          # Warn user after 9 minutes
+SESSION_SECURITY_EXPIRE_AFTER = 600        # Log out after 10 minutes
+SESSION_SECURITY_PASSIVE_URLS = []         # URLs that won’t reset the timer
+SESSION_SECURITY_REDIRECT_TO_LOGOUT = False  # Set True for SSO setups
+SESSION_SECURITY_PING_URL = '/session_security/ping/'  # Activity endpoint
+SESSION_SECURITY_JS_PATH = 'session_security/script.js'  # Override to load custom bundles (tests/coverage)
+```
+```python
+# urls.py
+from django.urls import include, path
+urlpatterns = [
+    # Add this route to enable the session security endpoints
+    path('session_security/', include('session_security.urls')),
+    # ...
+]
+```
+```html
+<!-- base.html (or equivalent) -->
+{% load static %}
+...
+{% include "session_security/all.html" %}
+<script>
+    // optional: disable form discard confirmation dialog
+    sessionSecurity.confirmFormDiscard = undefined;
+    // optional: register custom activity
+    sessionSecurity.activity();
+</script>
+```
+## Single Sign-On (SSO) Considerations
+When using SSO, the default page reload after timeout may cause automatic re-login if the SSO session remains valid. Set `SESSION_SECURITY_REDIRECT_TO_LOGOUT = True` to explicitly end the app session by redirecting to `LOGOUT_REDIRECT_URL`. Note that this does **not** terminate the SSO provider session; configure a matching timeout on your SSO server for full coverage.
+## Development
+This project uses `uv` for managing the development environment. To set up the development environment, follow these steps:
+```console
+# Clone the repository
+$ git clone https://github.com/arrai-innovations/django-session-security-continued.git
+$ cd django-session-security-continued
+# Ensure a compatible Python (>=3.9) is installed
+# Install uv if not already installed
+$ pip install --user --upgrade uv
+# Create and sync the dev environment
+#  (default group includes dev dependencies)
+$ uv sync
+# (Optional) Run Git hooks setup
+$ uv run pre-commit install
+# Install JS tooling for the client bundle / coverage builds
+$ npm install
+```
+## Testing
+Chrome is required for the Selenium end-to-end tests (Selenium Manager will download the matching chromedriver automatically). Run the full suite with pytest:
+```console
+$ uv run pytest
+```
+If Chrome isn’t available (or you only want the fast unit tests), skip the browser suite with `uv run pytest -m "not selenium"`.
+Add extra breathing room to the Selenium waits (in CI) by exporting `SESSION_SECURITY_TIMEOUT_PADDING` (in seconds). For example, `SESSION_SECURITY_TIMEOUT_PADDING=5 uv run pytest -k selenium` gives each warning/expiry wait up to five additional seconds before failing.
+### JavaScript coverage
+We ship a Vite + Istanbul build that instruments the client bundle and collects coverage from the Selenium run:
+1. `npm run build:coverage`
+2. `SESSION_SECURITY_JS_COVERAGE=1 uv run pytest -k selenium`
+3. `npm run coverage:report` (writes reports to `coverage-js/` and `lcov.info`)
+The `SESSION_SECURITY_JS_COVERAGE` flag makes the Django test settings load the instrumented bundle and dumps `window.__coverage__` into `.nyc_output/` after each Selenium test.
+## Contributing
+Contributions are welcome. Please fork the repository and create a pull request with your changes. We reserve the right to review and modify your contributions before merging them into the main branch. By submitting a change you confirm that:
+- You wrote the code (or have the right to contribute it), and
+- You’re happy for it to be released under this project’s MIT license.
+[code style: ruff]: https://img.shields.io/badge/code%20style-ruff-000000.svg?style=for-the-badge
+[ruff]: https://docs.astral.sh/ruff/formatter/#style-guide
+[code style: prettier]: https://img.shields.io/badge/code_style-prettier-ff69b4.svg?style=for-the-badge
+[prettier]: https://github.com/prettier/prettier
+[python 3.9 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.9.svg
+[python 3.10 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.10.svg
+[python 3.11 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.11.svg
+[python 3.12 status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.12.svg
+[coverage status]: https://docs.arrai.dev/dssc/artifacts/main/python_3.9.coverage.svg
+[ruff status]: https://docs.arrai.dev/dssc/artifacts/main/ruff.svg
+[pipenv]: https://github.com/pypa/pipenv
+[pip-audit status]: https://docs.arrai.dev/dssc/artifacts/main/pip-audit.svg

django_session_security_continued-3.0.0a1/django_session_security_continued.egg-info/SOURCES.txt ADDED Viewed

@@ -0,0 +1,48 @@
+LICENSE
+README.md
+pyproject.toml
+./session_security/__init__.py
+./session_security/middleware.py
+./session_security/models.py
+./session_security/settings.py
+./session_security/urls.py
+./session_security/utils.py
+./session_security/views.py
+./session_security/templatetags/__init__.py
+./session_security/templatetags/session_security_tags.py
+./session_security/tests/__init__.py
+./session_security/tests/conftest.py
+./session_security/tests/test_base.py
+./session_security/tests/test_middleware.py
+./session_security/tests/test_script.py
+./session_security/tests/test_templates.py
+./session_security/tests/test_views.py
+./session_security/tests/project/__init__.py
+./session_security/tests/project/settings.py
+./session_security/tests/project/urls.py
+./session_security/tests/project/wsgi.py
+django_session_security_continued.egg-info/PKG-INFO
+django_session_security_continued.egg-info/SOURCES.txt
+django_session_security_continued.egg-info/dependency_links.txt
+django_session_security_continued.egg-info/requires.txt
+django_session_security_continued.egg-info/top_level.txt
+session_security/__init__.py
+session_security/middleware.py
+session_security/models.py
+session_security/settings.py
+session_security/urls.py
+session_security/utils.py
+session_security/views.py
+session_security/templatetags/__init__.py
+session_security/templatetags/session_security_tags.py
+session_security/tests/__init__.py
+session_security/tests/conftest.py
+session_security/tests/test_base.py
+session_security/tests/test_middleware.py
+session_security/tests/test_script.py
+session_security/tests/test_templates.py
+session_security/tests/test_views.py
+session_security/tests/project/__init__.py
+session_security/tests/project/settings.py
+session_security/tests/project/urls.py
+session_security/tests/project/wsgi.py

django_session_security_continued-3.0.0a1/django_session_security_continued.egg-info/dependency_links.txt ADDED Viewed

	@@ -0,0 +1 @@
1	+

django_session_security_continued-3.0.0a1/django_session_security_continued.egg-info/requires.txt ADDED Viewed

	@@ -0,0 +1 @@
1	+ django<5.3,>=4.2

django_session_security_continued-3.0.0a1/django_session_security_continued.egg-info/top_level.txt ADDED Viewed

	@@ -0,0 +1 @@
1	+ session_security