Problem getting cookie to be recognized by server

Hi Rss,

From your description, you have two servers and each one hosts a certain
web application, one is ASP.NET web app and another is java servlet based
web app. Currently, you are trying to use HttpWebRequest to request a login
page in the java web app and then retirve back the authentication cookie
and set into the asp.net web application's cookie colleciton for sequential
use, yes?

As for this problem, here are some of my suggestions:
1. Generally, a cookie item has a Domain attribute which distingish it
between different applications and a path attribute which can distingish
them in the same domain. Also, the ASP.NET, CLASSIC ASP and JSP/Servlet may
have different behavior on manipulating cookie's certain attributes. So the
cookie you retrieved from the jsp/servlet web app may not able to be
directly used in asp.net application (such as store to the asp.net web
app's client and retrieve it back again). We'd better retrieve back the
cookie from jsp/servlet web app and then still use HttpWebRequest and
reattach the cookie and visit the jsp/servlet web app.

2. Also, in asp.net , if we want to store cookie to its client, we have to
use the Response.Cookie s collection rather than the Request.Cookies
collecton. the Request Cookies collectidon is the cookies retrieved from
the clientside but not the ones that will be stored again to client.

Here are some tech articles on cookies in asp.net:
#Basics of Cookies in ASP.NET
http://msdn.microsoft.com/library/de...us/dv_vstechar
t/html/vbtchaspnetcook ies101.asp

Thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Get Preview at ASP.NET whidbey
http://msdn.microsoft.com/asp.net/whidbey/default.aspx

Thanks for the reply, and yes - you are exactly right on your summary of
what I am trying to do. I noticed the behavior your are talking about
with respect to Domains, and was trying to set all HttpCookie properties
from the Cookie retrieved from the HttpWebResponse object, but it was no
use. While I could see the Cookie in HTTP header [via TcpTrace], the
Servelet side did not apparently recognize it.

Two interesting NOTEs on behavior:

1) if I ran this such that the ASP.NET application AND the Java servlet
code where running on the same machine, and in the same IIS context
(i.e. same machine and under the same root path) - it works fine!

2) if I run my ASP.NET app that programmaticall y hits the Java Servlet
and grabs the JSESSIONID cookie, then enter the URL to the page on the
Servlet machine that requires the cookie - BUT hit it via the TcpTrace
redirect [which is tunnelling through the ASP.NET machine], it works.
If I enter the direct URL, it does not work - for example:

WORKING EXAMPLE [enter http://aspdotnet:8080/test.irpt and the cookie I
got is recognized in the page] FAILING EXAMPLE [enter
http://servlet_machine/test.irpt and the cookie is NOT recognized UNLESS
I first hit the login page via the same path (i.e.
http://servlet_machine)]

I will gladly try the first suggestion (i.e. HttpWebRequest against the
URL that is being set as the IFRAME src attribute), but I'm not sure how
to handle the result of executing the request. How do I take the
resulting response stream and actually set it in an IFRAME or similar
construct? I need the Iframe because the resulting code has embedded
APPLET tags, etc. - unless there is another way to render this so the
result HTML block is isolated from the rest of the page.

Thanks in advance for you help,
Bob

*** Sent via Devdex http://www.devdex.com ***
Don't just participate in USENET...get rewarded for it!

Got the problem solved. It turned out to be a domain problem. I was not
specifying fully-qualified domain names for the two respective machines
(i.e. machineA.domain .com and machineB.domain .com). That made the
difference. After issueing all URL(s) with the fully domain name (i.e.
http://machinea.domain.com/test.irpt), then using just domain.com as the
cookie's domain property, it worked.

Thanks for the suggestions, however, it helped me narrow in on what I
suspected the problem was.

-bob

"microsoft.publ ic.dotnet.frame work.aspnet" <an*******@devd ex.com> wrote in
message news:OW******** ******@TK2MSFTN GP11.phx.gbl...

Thanks for the reply, and yes - you are exactly right on your summary of
what I am trying to do. I noticed the behavior your are talking about
with respect to Domains, and was trying to set all HttpCookie properties
from the Cookie retrieved from the HttpWebResponse object, but it was no
use. While I could see the Cookie in HTTP header [via TcpTrace], the
Servelet side did not apparently recognize it.

Two interesting NOTEs on behavior:

1) if I ran this such that the ASP.NET application AND the Java servlet
code where running on the same machine, and in the same IIS context
(i.e. same machine and under the same root path) - it works fine!

2) if I run my ASP.NET app that programmaticall y hits the Java Servlet
and grabs the JSESSIONID cookie, then enter the URL to the page on the
Servlet machine that requires the cookie - BUT hit it via the TcpTrace
redirect [which is tunnelling through the ASP.NET machine], it works.
If I enter the direct URL, it does not work - for example:

WORKING EXAMPLE [enter http://aspdotnet:8080/test.irpt and the cookie I
got is recognized in the page] FAILING EXAMPLE [enter
http://servlet_machine/test.irpt and the cookie is NOT recognized UNLESS
I first hit the login page via the same path (i.e.
http://servlet_machine)]

I will gladly try the first suggestion (i.e. HttpWebRequest against the
URL that is being set as the IFRAME src attribute), but I'm not sure how
to handle the result of executing the request. How do I take the
resulting response stream and actually set it in an IFRAME or similar
construct? I need the Iframe because the resulting code has embedded
APPLET tags, etc. - unless there is another way to render this so the
result HTML block is isolated from the rest of the page.

Thanks in advance for you help,
Bob

*** Sent via Devdex http://www.devdex.com ***
Don't just participate in USENET...get rewarded for it!