You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/container-apps/sessions.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -79,11 +79,11 @@ For code interpreter sessions, you can also use an integration with an [LLM fram
79
79
80
80
The session identifier is critical and sensitive information that must be securely created and managed. It's important to secure your application to ensure each user or tenant only has access to their own sessions.
81
81
82
-
The specific strategies to prevent misuse of session identifiers differ depends on the design and architecture of your app. However, your app must always have complete control over the creation and use of session identifiers so that a malicious user cannot access another user's session.
82
+
The specific strategies to prevent misuse of session identifiers differ depending on the design and architecture of your app. However, your app must always have complete control over the creation and use of session identifiers so that a malicious user can't access another user's session.
83
83
84
84
Some example strategies include:
85
85
86
-
* If your app uses one session per user, each user must be securely authenticated and your app must use a session identifier that is unique to each logged in user.
86
+
* If your app uses one session per user, each user must be securely authenticated and your app must use a session identifier that is unique to the corresponding logged in user.
87
87
* If your app uses one session per AI agent conversation, ensure your app uses a session identifier that is unique to each conversation and can't be modified by the end user.
0 commit comments