csrf token invalid when user's session times out

Used this flask example for implementing a csrf token in my cherrypy app for all my site's forms...

However when a user's session times out the csrf token in session becomes None.

token = cherrypy.session.get('csrf_token')
if token is None or token != cherrypy.request.params['csrf_token']:
    raise cherrypy.HTTPError(403)

How can I work around this?

Thanks in advance!

Solution

There is not need to work around this, as the behaviour you are describing is correct. If the csrf token persists for a long time, it is not very useful - the whole idea is that it is not reusable, at least not over a long period of time.

How to use session_start in Wordpress?
ExtJS: store, pagingToolbar and PHP session expire
How to use telethon session file to login with pyrogram
What should we store in the session when using session-based authentication?
OpenLiberty Database Session Replication - org.jboss.weld.module.web.HttpSessionBean$SerializableProxy - ClassNotFoundException
Reopening a session in PHP
SFTP connectivity via Jsch fails with "Auth fail for methods 'publickey'"
Artisan command for clearing all session data in Laravel
How to write to the Flask Session from a child process
Batch statements return "Unconfigured table" error
How to get a session object in the server side in next.js 14?
How to save the browser sessions in Selenium?
How to specify where flask should store cookies (flask Session)
PHP Sessions Not Extending Cookie Expiration on Each Request
Read Flask Session Cookie
How do I create a session that runs from friday till sunday the following week?
Check if PHP session has already started
Session not persisting after redirect during Google OAuth 2.0 flow
Why cookies dont expire after closing browser?
How to display all session keys and values in Django?
Is there any way to add custom column to sessions table while working with pdo sessions
Property `user` does not exist on type `Session & Partial<SessionData>`
How can I keep my user's login session open in my flutter application?
__PHP_Incomplete_Class_Name wrong
How I can update session in server side
Magento: getSingleton('customer/session') doesn't return information when called via SOAP
Session expire time for each session
Express session variable is undefined on other routes after defining it in the login route
how to maintain an offline session management strategy in android
TLS/SSL session resume on FTP transfer connection with OpenSSL