40e1e1e59e
1. Use request.session instead of request.user, since request.user won't necessarily be properly set. 2. Be extra paranoid by putting logging after session cookie deletion, so that even if there is some error related to logging, the important work will complete and the browser won't get left in a broken state. 3. Write out the full contents of the Cookie header (up to 4096 bytes) in the log as a base64 encoded string. This way we can look at broken cookie states and diagnose what's breaking them (the Python parser will just silently skip anything past a corrupted cookie entry). We base64 encode mostly to prevent people from maliciously injecting garbage into our logs.
Open edX -------- This is the root package for Open edX. The intent is that all importable code from Open edX will eventually live here, including the code in the lms, cms, and common directories. If you're adding a new Django app, place it in core/djangoapps. If you're adding utilities that require Django, place them in core/djangolib. If you're adding code that defines no Django models or views of its own but is widely useful, put it in core/lib. Note: All new code should be created in this package, and the legacy code will be moved here gradually. For now the code is not structured like this, and hence legacy code will continue to live in a number of different packages.