473,320 Members | 1,828 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

Cookieless InProc sessions (reset on its own)

I've been searching to find an answer but can not.

I have a site that started out using the defaul session cookieless="false"
Most pages have an IFrame located on them. I decided to change to
cookieless="true"

Now the session is completely reset and a new session id is given. Are
there known issues with cookieless sessions and IFrames when using InProc
session handling.

Thanks,

Ron
Nov 18 '05 #1
7 2920
Hi,

When Cookieless is used by ASP.NET session id embedded into page URL. If
for some reason request arrives to the server without session id in URL
address ASP.NET will create new session.

Natty Gur[MVP]

blog : http://weblogs.asp.net/ngur
Mobile: +972-(0)52-8888377
*** Sent via Devdex http://www.devdex.com ***
Don't just participate in USENET...get rewarded for it!
Nov 18 '05 #2
Hi Ron,

When Cookieless is set to true, the session id will be displayed in url.
When we have iframe in a web form and its src is in same asp.net
application, it will have same session id. What did you mean "Now the
session is completely reset and a new session id is given."? Can you give a
sample?

Luke
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #3
well, the portion of the site having problems is the administrative
section. So first thing a user logins in, handled by th eapplication not
Windows or anything like that. Then they are taken to a page with a bunch
of links. Each link takes them to a page which in turn houses a IFrame
within.

The application is setup that if you go to any page and are not logged in
(which is stored in session) in will redirect you to the login page.

This is exactly what is happeneing. After being redirect I am noticing the
new sessionid in the url

"[MSFT]" <lu******@online.microsoft.com> wrote in message
news:f3*************@cpmsftngxa10.phx.gbl...
Hi Ron,

When Cookieless is set to true, the session id will be displayed in url.
When we have iframe in a web form and its src is in same asp.net
application, it will have same session id. What did you mean "Now the
session is completely reset and a new session id is given."? Can you give a sample?

Luke
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #4
Hi Ron,

How did the user are taken to a page with a bunch of links, with
Response.Redirect? Is this page in same ASP.NET application? Is the session
id correct for this page?

Luke

Nov 18 '05 #5
The user will click a link on the inital page after loging in. Note the
initial page has no IFrames on it, there is a list of links that all point
to different pages; each containing an IFrame on it.

To answer your question, the pages with the IFrames are in the same
application, The sessions are lost when linking to any one of the pages
with the IFrames. Basically each of the pages that house the IFrames check
to see if the user is logged in by way of a stored value in the session. If
not, they get directed to the login page to re-login. So this is telling me
that the sessions are lost.

NOTE: This full process works fine when cookieless is set to false.
Thanks
"[MSFT]" <lu******@online.microsoft.com> wrote in message
news:ca*************@cpmsftngxa10.phx.gbl...
Hi Ron,

How did the user are taken to a page with a bunch of links, with
Response.Redirect? Is this page in same ASP.NET application? Is the session id correct for this page?

Luke

Nov 18 '05 #6
Hi Ron,

I perform such a test but I didn't found the same issue. To perform further
troube shoot, I suggest you try to output the session ID Instead of
redirect to the login page, for example,

Response.Write(Session.SessionID);

In this way, you can know they are in same session

Luke

Nov 18 '05 #7
Ok thanks, will try
"[MSFT]" <lu******@online.microsoft.com> wrote in message
news:f8*************@cpmsftngxa10.phx.gbl...
Hi Ron,

I perform such a test but I didn't found the same issue. To perform further troube shoot, I suggest you try to output the session ID Instead of
redirect to the login page, for example,

Response.Write(Session.SessionID);

In this way, you can know they are in same session

Luke

Nov 18 '05 #8

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

6
by: JJ | last post by:
Hi, I really need to use cookieless ASP sessions with ASP 3 (IIS5) Can I find out the session ID from the first page, then post it or send it with the url to the next page, then at the start...
0
by: djluker | last post by:
Does anyone know of a way to implement cookieless sessions in ASP.net by tacking on the session ID to the querystring, rather than setting cookieless="true" in the web.config file? I see that some...
2
by: alex | last post by:
when i bookmark a page in my app with a session id in the path, that session id doesn't get reset. It survives timeouts, browser and server restarts. I'm seeing this behaviour whether I use InProc...
4
by: moondaddy | last post by:
in the webconfig I set: <sessionState mode="InProc" stateConnectionString="tcpip=127.0.0.1:42424" sqlConnectionString="data source=127.0.0.1;Trusted_Connection=yes" cookieless="true"...
2
by: Steve Franks | last post by:
According to the docs you tell ASP.NET to use cookieless sessions by setting a value in the config.web file. However, what if I wanted to determine at run time whether or not I wanted to use...
10
by: Anthony Williams | last post by:
Hi gang, This one looks like a bug :o( As you may or may not know, setting session management in web.config to use cookieless sessions causes the ASP.NET runtime to munge a session ID into...
0
by: Jerad Rose | last post by:
I have an odd scenario. I am working on a hybrid site that uses various development platforms, namely traditional ASP and Lasso (a Mac scripting language). The site uses its own custom sessions...
0
by: Chris Gill | last post by:
I'm trying to use cookieless sessions in asp.net using the InProc mode (for various reasons it is not desirable for us to use the other modes if it is possible to avoid them). My problem revolves...
3
by: =?Utf-8?B?bWdvcHBlcnQ=?= | last post by:
I'm having an issue with using web services in a web application marked with session cookieless attribuet set to "AutoDetect". My real life scenario is too complex to lay out but here's my...
0
by: DolphinDB | last post by:
The formulas of 101 quantitative trading alphas used by WorldQuant were presented in the paper 101 Formulaic Alphas. However, some formulas are complex, leading to challenges in calculation. Take...
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
by: ryjfgjl | last post by:
ExcelToDatabase: batch import excel into database automatically...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
0
by: Defcon1945 | last post by:
I'm trying to learn Python using Pycharm but import shutil doesn't work
0
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.