public interface SessionSecretComputer
Instead of using the same security fingerprint secret for all sessions, this can be implemented to provide a custom secret per user or session to further increase the security.
Note that the secret itself must not be contained in the session data, as this would disable the session security entirely. Rather the user ID or a similar session value can be used to determine a secret and safe session value.
currentSession- the decoded session data
Copyright © 2018. All rights reserved.