473,888 Members | 1,584 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Cookie problem Sessionid get doubled

Hi,

we've the following problem :

We have an asp-application which sets the cookie on first login. The cookie
will never be touched during user access. The user can work the whole day,
but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
overwriting the very first entries in the cookie. Does anyone had the same
problem or has a solution. The server is a w2003 enterprise the client has
windows xp sp2.

Regards

Christoph
Jul 22 '05 #1
7 2153
What are you storing in the cookie? I don't really understand what you're
saying here with the cookie getting 2-4 session IDs.

Ray at work

"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:61******** *************** ***********@mic rosoft.com...
Hi,

we've the following problem :

We have an asp-application which sets the cookie on first login. The cookie will never be touched during user access. The user can work the whole day,
but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
overwriting the very first entries in the cookie. Does anyone had the same
problem or has a solution. The server is a w2003 enterprise the client has windows xp sp2.

Regards

Christoph

Jul 22 '05 #2
the way your explaining it does not make sense
"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:61******** *************** ***********@mic rosoft.com...
Hi,

we've the following problem :

We have an asp-application which sets the cookie on first login. The
cookie
will never be touched during user access. The user can work the whole day,
but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
overwriting the very first entries in the cookie. Does anyone had the same
problem or has a solution. The server is a w2003 enterprise the client
has
windows xp sp2.

Regards

Christoph

Jul 22 '05 #3
Hi,

we store here the user login data , and other important data. this data will
be cleaned out if we get the 3 or 4 new sessionids (and we don't know how
they get there, 'cause we only read the data on a session timeout). so if we
get a session timeout, we could read the data from the cookie again and
restore the session.

Regards

Christoph

"Ray Costanzo [MVP]" wrote:
What are you storing in the cookie? I don't really understand what you're
saying here with the cookie getting 2-4 session IDs.

Ray at work

"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:61******** *************** ***********@mic rosoft.com...
Hi,

we've the following problem :

We have an asp-application which sets the cookie on first login. The

cookie
will never be touched during user access. The user can work the whole day,
but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
overwriting the very first entries in the cookie. Does anyone had the same
problem or has a solution. The server is a w2003 enterprise the client

has
windows xp sp2.

Regards

Christoph


Jul 22 '05 #4
Do you mean ASP session ids (as in Session.Session ID). That ID will only
change if the browser fails to send the session cookie. IIS will then
generate a new one. It should have no effect on your cookie unless you reset
your cookie data when a new ASP session starts.

Is your cookie a disk cookie (has an expiration date) or a memory cookie (no
expiration date)?

--
--Mark Schupp
"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:B4******** *************** ***********@mic rosoft.com...
Hi,

we store here the user login data , and other important data. this data
will
be cleaned out if we get the 3 or 4 new sessionids (and we don't know how
they get there, 'cause we only read the data on a session timeout). so if
we
get a session timeout, we could read the data from the cookie again and
restore the session.

Regards

Christoph

"Ray Costanzo [MVP]" wrote:
What are you storing in the cookie? I don't really understand what
you're
saying here with the cookie getting 2-4 session IDs.

Ray at work

"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:61******** *************** ***********@mic rosoft.com...
> Hi,
>
> we've the following problem :
>
> We have an asp-application which sets the cookie on first login. The

cookie
> will never be touched during user access. The user can work the whole
> day,
> but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
> overwriting the very first entries in the cookie. Does anyone had the
> same
> problem or has a solution. The server is a w2003 enterprise the client

has
> windows xp sp2.
>
> Regards
>
> Christoph


Jul 22 '05 #5
Hi Mark,

thx for your reply. Yes the sessionID (session.sessio nid) is changing and is
written in addition into the cookie. How can this happen since we do only
create in one time. the session does not terminate, and we do not access the
cookie again (tested). Why should the browser fail to send the session cookie
? the cookie has an expiration date of 24hours from login on.

regards

christoph

"Mark Schupp" wrote:
Do you mean ASP session ids (as in Session.Session ID). That ID will only
change if the browser fails to send the session cookie. IIS will then
generate a new one. It should have no effect on your cookie unless you reset
your cookie data when a new ASP session starts.

Is your cookie a disk cookie (has an expiration date) or a memory cookie (no
expiration date)?

--
--Mark Schupp
"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:B4******** *************** ***********@mic rosoft.com...
Hi,

we store here the user login data , and other important data. this data
will
be cleaned out if we get the 3 or 4 new sessionids (and we don't know how
they get there, 'cause we only read the data on a session timeout). so if
we
get a session timeout, we could read the data from the cookie again and
restore the session.

Regards

Christoph

"Ray Costanzo [MVP]" wrote:
What are you storing in the cookie? I don't really understand what
you're
saying here with the cookie getting 2-4 session IDs.

Ray at work

"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:61******** *************** ***********@mic rosoft.com...
> Hi,
>
> we've the following problem :
>
> We have an asp-application which sets the cookie on first login. The
cookie
> will never be touched during user access. The user can work the whole
> day,
> but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
> overwriting the very first entries in the cookie. Does anyone had the
> same
> problem or has a solution. The server is a w2003 enterprise the client
has
> windows xp sp2.
>
> Regards
>
> Christoph


Jul 22 '05 #6

"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:40******** *************** ***********@mic rosoft.com...
Hi Mark,

thx for your reply. Yes the sessionID (session.sessio nid) is changing and
is
written in addition into the cookie. How can this happen since we do only
create in one time. the session does not terminate, and we do not access
the
cookie again (tested). Why should the browser fail to send the session
cookie
? the cookie has an expiration date of 24hours from login on.
You said you don't access the cookie until the session has timed out. At
that point the session ID is invalid to IIS, so it generates another ID for
the new session. The cookie doesn't expire for 24 hours, but the default
ASP session timeout is 20 minutes. So IE is sending all of the session ids
along with the rest of the cookie, it's just that all but one are no longer
meaningful to the server.

If you had a way to to tell which sessionid was older, you might be able to
set the expired one to zero length. Or, when you detect that you've
accumulated too much sessionid baggage, you could expire the cookie, post
the info back to yourself (like with a refresh pragma, or by emitting some
client script) and then create a new cookie out of the info you posted to
yourself.
-Mark

regards

christoph

"Mark Schupp" wrote:
Do you mean ASP session ids (as in Session.Session ID). That ID will only
change if the browser fails to send the session cookie. IIS will then
generate a new one. It should have no effect on your cookie unless you
reset
your cookie data when a new ASP session starts.

Is your cookie a disk cookie (has an expiration date) or a memory cookie
(no
expiration date)?

--
--Mark Schupp
"Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote in
message news:B4******** *************** ***********@mic rosoft.com...
> Hi,
>
> we store here the user login data , and other important data. this data
> will
> be cleaned out if we get the 3 or 4 new sessionids (and we don't know
> how
> they get there, 'cause we only read the data on a session timeout). so
> if
> we
> get a session timeout, we could read the data from the cookie again and
> restore the session.
>
> Regards
>
> Christoph
>
> "Ray Costanzo [MVP]" wrote:
>
>> What are you storing in the cookie? I don't really understand what
>> you're
>> saying here with the cookie getting 2-4 session IDs.
>>
>> Ray at work
>>
>> "Christoph Pieper" <Ch************ *@discussions.m icrosoft.com> wrote
>> in
>> message news:61******** *************** ***********@mic rosoft.com...
>> > Hi,
>> >
>> > we've the following problem :
>> >
>> > We have an asp-application which sets the cookie on first login. The
>> cookie
>> > will never be touched during user access. The user can work the
>> > whole
>> > day,
>> > but after 6 to 7 hours, the cookie get 2-4 new asp-sessionid's thus
>> > overwriting the very first entries in the cookie. Does anyone had
>> > the
>> > same
>> > problem or has a solution. The server is a w2003 enterprise the
>> > client
>> has
>> > windows xp sp2.
>> >
>> > Regards
>> >
>> > Christoph
>>
>>
>>


Jul 22 '05 #7
"Christoph Pieper" wrote:
We have an asp-application which sets the cookie on first login.
The cookie will never be touched during user access. The user can
work the whole day, but after 6 to 7 hours, the cookie get 2-4 new
asp-sessionid's thus overwriting the very first entries in the
cookie. Does anyone had the same problem or has a solution. The
server is a w2003 enterprise the client has windows xp sp2.


There are numerous possibilities that your post does not address.

For starters, are you certain that the user has not closed (and reopened)
the browser all day?

Is there any chance the user is opening a second browser window?

Do you use frames (includes IFRAME) ?

Have you observed this problem in any browser other than Internet Explorer?

Do you have a privacy policy?

Those are only some of the questions whose answers have session
consequences.
Here's a decent list:
http://aspfaq.com/show.asp?id=2157
--
Dave Anderson

Unsolicited commercial email will be read at a cost of $500 per message. Use
of this email address implies consent to these terms. Please do not contact
me directly or ask me to contact you directly for assistance. If your
question is worth asking, it's worth posting.
Jul 22 '05 #8

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

0
3927
by: Sucpraran | last post by:
We are using Cookies in our application to track user session. It works 95% but fails in occations. We could not find any pattern for this. Below is the code to Set and Get cookies. In the occations when it fails, we get nothing in getCookie as if cookie is not set. We verified Browswer Setting and all of them accept cookies. We try to find a pattern with Broswer types/versions and OS types/versions but could not come with a pattern. ...
8
1580
by: krisrajz | last post by:
Please observe the pages below: session1.asp <% Session("test")="TESTING" Response.Redirect "session2.asp" %> session2.asp
5
3057
by: | last post by:
Hi, I'm trying to use the cookie munging session handling behaviour of asp.net instead of cookies themselves as I'm finding quite a few people are barring cookies (especially AOL users). If I change the setting in web.config everything seems to work fine as long as I'm using relative paths. The problem is I've got a menuing system that's generated from a site-wide template - so I use a fixed path from the application root - (ie:...
3
2250
by: Ben | last post by:
Hi, I'm sending out a session cookie. That is a cookie that has no expiration date. When I surf through the site, no problems, but if I close the browser and open it back up, the cookie is still there if other browser windows were open. Even if those windows didn't go to the site with the cookie or spawn from the browser that is visiting the site. This is causing a problem. People want to be able to close the browser to logout. How...
4
1672
by: Gridlock | last post by:
I'm trying to read the cookies using HttpContext.Current.Request.Cookies, but the only cookie that I get is the ASP.NET SessionId cookie. There are many cookies on the machine, why am I only getting the one cookie? Thanks, - Stew
3
1228
by: Andrea | last post by:
I noticed that if cookie is disabled, unfortunately adding cookie to the collection doesn't trap any error, and this is really good for some aspects, because it's impossibile to understand that since next time you use the cookie. Now supposing to work on an environment where cookie are disabled, what's the behaviour of the session? They are passed on the querystring, but it's just the sessionid ... and other session values??? What...
3
2264
by: Paul | last post by:
I'm having a problem with the session being reset after setting a cookie. This is not supposed to happen. If I comment out the Add line below the site works normally, the session persists. Help. vs2003/.net 1.1 HttpCookie httpCookie = new HttpCookie("myCookieName"); httpCookie.Value = (string)Session; // BUG: adding the cookie kills the session.
4
1703
by: Ibrahim. | last post by:
Hi, Kindly clarify the followings; 1. Is the session cookie & FormsAuthenticationTicket cookie Interdependent? 2. When a new SessionID is generated, I have noticed the Session Cookie and the FormsAuthentication cookie are binded. 3. I need to know whether it's possible by Code or settings to treat the
1
1867
by: BJörn Lindqvist | last post by:
Hello, I have some very serious trouble getting cookes to work. After a lot of work (urllib2 is severly underdocumented, arcane and overengineerd btw) I'm finally able to accept cookes from a server. But I'm still unable to return them to a server. Specifically the script im trying to do logs on to a server, get a session cookie and then tries to access a secure page using the same session cookie. But the cookie header cookielib...
0
9961
marktang
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main usage, and What is the difference between ONU and Router. Let’s take a closer look ! Part I. Meaning of...
0
9800
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it. First, let's disable language synchronization. With a Microsoft account, language settings sync across devices. To prevent any complications,...
0
11178
Oralloy
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
0
10438
tracyyun
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
0
9597
agi2029
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
1
7990
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms. Adolph will...
0
7148
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
1
4642
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
3
3251
bsmnconsultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.