Also, when a first time login happens and a cookie is set to remember someone's name, is this like a 'nickname' that doesn't have to be unique and just gives the web app something to refer to the user as, or is it more of a userID that is specific to the user? It seems like storing any unique data in cookies is not very secure, so I'm trying to figure out what data is appropriate for cookies.

So, when one clears their browser cache, they're also requesting to delete the cookies?

Can you go over why we need Chrome DevTools?

Do all cookies expire?

Do different browsers have different limitations for cookies? Are we expected to use cookies in this class?

Where does our browser save cookies? 

With incognito mode, if you have a request.cookies.get in your code, will incognito mode cause issues?

Why does using a msg instead of flash() help avoid the session cookie?

I didn't understand why you couldn't used the get-redirect-post method, could you explain that futher?

Can I bring shortbread cookies to class