Otdfbt

Using a microphone from the 1930s

I have a unique character that I'm having a problem writing. He's a virus!

Randomness of Python's random

Why is Arya visibly scared in the library in S8E3?

What matters more when it comes to book covers? Is it ‘professional quality’ or relevancy?

What are the differences between credential stuffing and password spraying?

How can I support myself financially as a 17 year old with a loan?

How important is people skills in academic career and applications?

Would the Disguise Self spell be able to reveal hidden birthmarks/tattoos (of the person they're disguised as) to a character?

Which module had more 'comfort' in terms of living space, the Lunar Module or the Command module?

What does a spell range of "25 ft. + 5 ft./2 levels" mean?

Where can I go to avoid planes overhead?

Can hackers enable the camera after the user disabled it?

Have I damaged my car by attempting to reverse with hand/park brake up?

Why do money exchangers give different rates to different bills?

Does a card have a keyword if it has the same effect as said keyword?

Why do people keep telling me that I am a bad photographer?

Why is the relative clause in the following sentence not directly after the noun and why is the verb not in the end of the sentence?

How can I close a gap between my fence and my neighbor's that's on his side of the property line?

String won't reverse using reverse_copy

On which topic did Indiana Jones write his doctoral thesis?

What does this colon mean? It is not labeling, it is not ternary operator

Can Infinity Stones be retrieved more than once?

How to change lightning-radio-group selected value programmatically?

In airflow's configuration file `airflow.cfg` what is the `secret_key`, and do I have to set it?

Setting up Apache VirtualHost for multiple sitesPython background task thread lock error with mod_wsgiiis app pool set credentials not working for specific network account502 bad gateway nginx. uwsgi, flaskNginx serve static files for flask app 404Nginx With Dokku and FlaskHigh traffic MYSQL serverONLYOFFICE - JWS secret doesn't work (can connect without)Gunicorn with flask app returning 502 errorHow can I solve 0x80070585 Error code on my Python Flask wfastcgi app?

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;

0

As a comment above the value, it says # Secret key used to run your flask app, but that doesn't tell me much. Currently it is set to secret_key = temporary_key, but that seems unsafe. We have set up password protection on the webservice, and it is backed by postgres running on Ubuntu 14/16.

configuration flask

share|improve this question

edited Apr 25 at 7:13

André Christoffer Andersen

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

add a comment | 

0

As a comment above the value, it says # Secret key used to run your flask app, but that doesn't tell me much. Currently it is set to secret_key = temporary_key, but that seems unsafe. We have set up password protection on the webservice, and it is backed by postgres running on Ubuntu 14/16.

configuration flask

share|improve this question

edited Apr 25 at 7:13

André Christoffer Andersen

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

add a comment | 

As a comment above the value, it says # Secret key used to run your flask app, but that doesn't tell me much. Currently it is set to secret_key = temporary_key, but that seems unsafe. We have set up password protection on the webservice, and it is backed by postgres running on Ubuntu 14/16.

configuration flask

share|improve this question

edited Apr 25 at 7:13

André Christoffer Andersen

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

share|improve this question

edited Apr 25 at 7:13

André Christoffer Andersen

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

share|improve this question

edited Apr 25 at 7:13

André Christoffer Andersen

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

asked Jan 5 at 21:11

André Christoffer AndersenAndré Christoffer Andersen

1318

1 Answer
1

active

oldest

votes

-1

From the Flask documentation, the secret_key is a Flask setting which is used to keep client sessions secure. The Airflow documentation however doesn't really mention it (even in the Security section), nor that it should be changed from the default of temporary_key. It should be changed to a random key of your choice.

You can generate it with the Python command shown in the Flask docs:
python -c 'import os; print(os.urandom(16))'

Or, since the secret_key may be in unicode, you can use any online key generator to create one, or just enter some random string of letters and numbers.

Generate the key and copy-paste into your airflow.cfg, restarting the Airflow webserver afterwards.

share|improve this answer

edited Apr 24 at 6:38

answered Apr 24 at 6:30

BjornBjorn

12

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  One should not rely on online tools for features every modern OS includes. There are documented cases of people offering key generation tools and storing the key for later abuse.
  
  – anx
  Apr 24 at 18:16
  

  
  
  
  

add a comment | 

Your Answer

StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);

draft saved

draft discarded

Sign up or log in

StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);

Sign up using Google

Sign up using Facebook

Sign up using Email and Password

Post as a guest

Name

Email

Required, but never shown

StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f947745%2fin-airflows-configuration-file-airflow-cfg-what-is-the-secret-key-and-do-i%23new-answer', 'question_page');

);

Post as a guest

Name

Email

Required, but never shown

-1

From the Flask documentation, the secret_key is a Flask setting which is used to keep client sessions secure. The Airflow documentation however doesn't really mention it (even in the Security section), nor that it should be changed from the default of temporary_key. It should be changed to a random key of your choice.

You can generate it with the Python command shown in the Flask docs:
python -c 'import os; print(os.urandom(16))'

Or, since the secret_key may be in unicode, you can use any online key generator to create one, or just enter some random string of letters and numbers.

Generate the key and copy-paste into your airflow.cfg, restarting the Airflow webserver afterwards.

share|improve this answer

edited Apr 24 at 6:38

answered Apr 24 at 6:30

BjornBjorn

12

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  One should not rely on online tools for features every modern OS includes. There are documented cases of people offering key generation tools and storing the key for later abuse.
  
  – anx
  Apr 24 at 18:16
  

  
  
  
  

add a comment | 

-1

From the Flask documentation, the secret_key is a Flask setting which is used to keep client sessions secure. The Airflow documentation however doesn't really mention it (even in the Security section), nor that it should be changed from the default of temporary_key. It should be changed to a random key of your choice.

You can generate it with the Python command shown in the Flask docs:
python -c 'import os; print(os.urandom(16))'

Or, since the secret_key may be in unicode, you can use any online key generator to create one, or just enter some random string of letters and numbers.

Generate the key and copy-paste into your airflow.cfg, restarting the Airflow webserver afterwards.

share|improve this answer

edited Apr 24 at 6:38

answered Apr 24 at 6:30

BjornBjorn

12

• 
  
  
  

  
  

  
  
  
  
  
  

  
  
  One should not rely on online tools for features every modern OS includes. There are documented cases of people offering key generation tools and storing the key for later abuse.
  
  – anx
  Apr 24 at 18:16
  

  
  
  
  

add a comment | 

From the Flask documentation, the secret_key is a Flask setting which is used to keep client sessions secure. The Airflow documentation however doesn't really mention it (even in the Security section), nor that it should be changed from the default of temporary_key. It should be changed to a random key of your choice.

You can generate it with the Python command shown in the Flask docs:
python -c 'import os; print(os.urandom(16))'

Or, since the secret_key may be in unicode, you can use any online key generator to create one, or just enter some random string of letters and numbers.

Generate the key and copy-paste into your airflow.cfg, restarting the Airflow webserver afterwards.

share|improve this answer

edited Apr 24 at 6:38

answered Apr 24 at 6:30

BjornBjorn

12

share|improve this answer

edited Apr 24 at 6:38

answered Apr 24 at 6:30

BjornBjorn

12

answered Apr 24 at 6:30

BjornBjorn

12

answered Apr 24 at 6:30

BjornBjorn

12