diff options
| author | Derek Prior <derekprior@github.com> | 2018-10-18 22:46:25 +0200 |
|---|---|---|
| committer | Matilda Smeds <matildasmeds@users.noreply.github.com> | 2018-10-18 22:46:25 +0200 |
| commit | 595ffc37ed900fc88fedaf65c8f4fe5f8181ca52 (patch) | |
| tree | 7bf1f3de020b4fcb6eeadd658ae7f87906bfddc6 /guides | |
| parent | c5cf4a9ebea2d665006f3bc0ea04883542e3c663 (diff) | |
| download | rails-595ffc37ed900fc88fedaf65c8f4fe5f8181ca52.tar.gz rails-595ffc37ed900fc88fedaf65c8f4fe5f8181ca52.tar.bz2 rails-595ffc37ed900fc88fedaf65c8f4fe5f8181ca52.zip | |
Update guides/source/security.md
Diffstat (limited to 'guides')
| -rw-r--r-- | guides/source/security.md | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/guides/source/security.md b/guides/source/security.md index e39941646b..fbc2d5ddcb 100644 --- a/guides/source/security.md +++ b/guides/source/security.md @@ -36,7 +36,7 @@ This chapter describes some particular attacks related to sessions, and security ### What are Sessions? -INFO: Sessions enable the application to maintain user-specific state, while users interact with the application. Once the user has been authenticated, an active session enables the user to keep using the application, without requiring authentication on each request. +INFO: Sessions enable the application to maintain user-specific state, while users interact with the application. For example, sessions allow users to authenticate once and remain signed in for future requests. Most applications need to keep track of state for users that interact with the application. This could be the contents of a shopping basket, or the user id of the currently logged in user. This kind of user-specific state can be stored in the session. |