What kind of information should we collect from a user in a cookie, or is it dependent on the web app we build? 

Do we need to have login/logout to have sessions?

Since cookies aren't secure, how do we handle if there's sensitive data? 

Do cookies always have to be stored to remember a user's login?

How does flask make sure that session data is reliable if cookies are not secure?

Why do we delete cookies at the end of the session? I thought we usually save them

How much data is being stored about a user if an application has been using a cookie for your data for years?

Can any data be stored in cookies?

How does one determine how long the cookies stay until they expire? Particularly in cases where it might stay for years.