[Flask] Question of outsourcing flask app
Cameron Simpson
cs at cskk.id.au
Tue Jun 4 17:35:33 EDT 2019
On 04Jun2019 15:30, Adil Hasan <paradox2005 at gmail.com> wrote:
>I think that perhaps reading configs from remote resources could
>potentially be a security issue.
I was thinking that too.
>If you can make sure that the site
>providing the configs also has to provide some token that may help to
>mitigate the issue.
That sounds like a good idea.
Some years ago we had to support an app which had to read a SOAP
specification from a URL (limitation of their SOAP library), and we went
to the effort of providing an internal static web server whose whole
purpose was to provide that URL. The app still fetched a URL, but it was
wired to fetch it from a totally internal resource.
Cheers,
Cameron Simpson <cs at cskk.id.au>
>adil
>
>On Tue, Jun 04, 2019 at 03:51:11PM +0200, matar fall wrote:
>> Got It.
>> Thank for your reply.
>> It is necessary for me to do this kind of configuration if it is possible.
>> Suggestion of Carlos is a nice idea which I will check/explore.
>> Thank You. Regards
>>
>> Le mar. 4 juin 2019 à 15:11, Hippo <badrihippo at gmail.com> a écrit :
>>
>> > Why do you want to externalise the configuration? In other words, what are
>> > the settings that you plan to modify in the external file?
>> >
>> > Depending on what it is, you could code your application to automatically
>> > load the settings whenever it needs to, during runtime, instead of having
>> > to get it from the config file. (Of course, if it's something major then
>> > Carlos' suggestion of having a separate launch script would work better.
>> > Depends on what you're trying to do).
>> >
>> > —Badri
>> *Cordialement.*
>> *Matar FALL*
>> *Etudiant en Machine Learning for Data Science à l'Université Paris
>> Descartes*
>> *Tel: +33 07 51 53 95 18*
More information about the Flask
mailing list