Flask doesn’t have a ‘encrypt cookie’ setting , because it is not deemed necessary when you can secure the cookie in other ways.
Read moreIs Flask session encrypted?
Flask doesn’t have a ‘encrypt cookie’ setting , because it is not deemed necessary when you can secure the cookie in other ways.
Read moreIs Flask Login safe?
the login process seems secure . But you didn’t check the potential existing user in the signup form, or existing email address. Unless this is managed by the underlying User schema. And you should require a minimal password complexity.
Read more