v1.0.3 — 修复 gunicorn 多 worker session 丢失

- secret_key 从 os.urandom() 改为固定值/环境变量
- deploy.sh 首次部署自动生成 .env 并持久化
- 解决多 worker 下 session 解密失败导致保存 302
This commit is contained in:
mac
2026-06-02 23:40:14 +08:00
parent abdc1fc739
commit 668576b866
2 changed files with 14 additions and 2 deletions

3
app.py
View File

@@ -9,7 +9,8 @@ from werkzeug.security import generate_password_hash, check_password_hash
from database import init_db, get_checkin, save_checkin, delete_checkin, get_all_checkins
app = Flask(__name__)
app.secret_key = os.urandom(24)
# 固定密钥确保 gunicorn 多 worker 下 session 可互通
app.secret_key = os.environ.get('SECRET_KEY', 'ziwei-power-secret-2026')
# 会话持久化30 天
app.config['PERMANENT_SESSION_LIFETIME'] = timedelta(days=30)