Hi,
Please can you point me in the direction of a recipe to verify the _session_id in the URL so that it only works for verified users please.
I'm using Prodigy 1.8.5
Thank you
Hi,
Please can you point me in the direction of a recipe to verify the _session_id in the URL so that it only works for verified users please.
I'm using Prodigy 1.8.5
Thank you
Yes, you can set the PRODIGY_ALLOWED_SESSIONS
environment variable to a comma-separated list of valid session names. See here: https://prodi.gy/docs/api-web-app#multi-user-sessions.
(This is obviously not a replacement for authentication, it just checks the session name and returns a server error if the name is not in the list. But it's an easy way to prevent inconsistent data and wrong session attribution due to typos, mistakes etc.)