Flask-Paranoid protects user sessions. When a client connects to this
 application, a "paranoid" token will be generated according to the IP address
 and user agent. In all subsequent requests, the token will be recalculated and
 checked against the one computed for the first request. If the session cookie
 is stolen and the attacker tries to use it from another location, the
 generated token will be different, and in that case the extension will clear
 the session and block the request.