Sessions Without Cookie

Do you want manage ASP Sessions variables without Session Object and without Cookie?

View Replies


ADVERTISEMENT

Sessions/Cookie Limitations

ASP based Cookies. What is the limitation in data you can store with them? 4kb? How can you get the current size of Cookies your domain has placed on the computer? Another thing. Are ASP based cookies actually written to the client computer, like javascript ones are; or are they stored in sessions?

Sessions. I know a Session can hold quite a bit of data, but I never found a limit. All I know is the more data you place in a session, the more resources the server is losing. Can anyone recommend how many different keys I should place in a session?

I usually hold things like Username, Password, AccessLevel and one or 2 other preferences, but I'm not sure if that's too much as is. What other common ways are Sessions used for?

View Replies View Related

2 IE Sessions Sharing The Same Per-Session Cookie!!

I am having a problem tracking down what I believe to be a problem with
the way cookies are being used on our website application.

When user log onto the application, an in-memory (per-session) cookie
is created to hold the session key for the user. This unique key is
assigned as part of the business layer logon process, and never changes
while the user is logged on. The call to the business component returns
this unique key if the logon was successful, and the cookie is set up
as follows:

Response.Cookies("SessionKey").Path = "/"
Response.Cookies("SessionKey") = strSessionKey

Nowhere is the cookie assigned an .expires value.

Once a user has completed this logon process, they must then click past
an intermediate agreement page before actually having access to the main
application. When this intermediate page is submitted, it accesses the
cookie, extracts the session identifier and writes the value to a
database table.

The code to achieve this looks something like:

strSessionKey = Request.Cookies("SessionKey")
Dim objInstance
Set objInstance = Server.CreateObject("SomeComponent.SomeClass")
objInstance.StoreIdentifier strSessionKey
Set objInstance= nothing

The whole process works fine until I try to do the second stage (the
intermediate agreement) with two separate IE sessions (there are 2
separate IEXPLORER.EXE entries in task manager) very quickly.

I can go through the whole process fine, and then while leaving the
application open, I can start again with a new IE window and complete
the process again. In each case the correct identifier is stored in the
database for each separate session.

If I get to the second stage of the logon process with 2 separate IE
sessions, and submit both agreement pages at the same time (or as close
together as I can), then they both write the same unique session
identifier to the database, as if they are accessing the same cookie!
The session identifier used is the one from the first agreement page I
submit. This definitely only happens if I do this at the same time.
Wait a few seconds between the submissions and all is well.

Has anyone come across something like this before and can advise on a
possible reason?

View Replies View Related

Response.cookie In Session_onstart Event And IE 6.0 Cookie Acceptance

When I set a cookie in global.asa in the sub session_onstart, even if
I have "privacy" in IE 6.X set to "block all cookies" the cookie is
still set, and I can get it on other pages.

I can't find an article that addresses this as a specific issue. Why
does the browser get the cookie when it is set in the session_onstart
event even when I have "block all cookies" set?

View Replies View Related

Session Cookie Vs. Regular Cookie

I want to know what's the differences between session cookie and regular cookie.

In ASP, when we create cookie, we do the following to identify an user:

Response.Cookies("name") = value

Is this regular cookie? How about session cookie? and when to use which?

View Replies View Related

Sessions To Database Sessions

We are planning to set-up a load balanced web environment. Accordingly, we are going to change the session management on our website from the classic ASP Session State and session variables, to a database method.

Does any one have any pointers as to how I might approach this, so that I can have the same sort of functionality the ASP sessions give without having to create database columns for each session variable I wish to create. I am thinking along the lines of some serialised dictionary or something that I can stick in a blob column.

View Replies View Related

Sessions

Can someone explain to me how you set a session and how you check the session?

View Replies View Related

Sessions

I created a session variable in an asp page as below:

Session("userid") = userid

is it possible for me to read that same variable "userid" in a seperate perl script? if so how?

View Replies View Related

Sessions In ASP

I have session time by default as 20 mints in iis.

I want to that to be increased by 60 mints in my application so that when user save changes after 21st mint the session should not be lost.

Can this be happen without changing the default time in iis since i have many other applications.

View Replies View Related

End All The Sessions

Any one know how to end all the session in asp application. Is there any other directive rather than '#include' to include a file in our Asp page.

View Replies View Related

Sessions

I was wanting to know if you could have a function within a session?Example:
Code:

<% Session("Message") = MyFunction() %>

Is that possible? Ok, maybe not "is it possible" but can you use the session message to dictate where the function outputs its data? Here's why I'm asking. I have an online testing app that when a person selects the wrong answer the correct answer (along with a bunch of other stuff) will be displayed on the page.
I'm getting it to display the correct answer and the other information, but the correct answer is at the top of the page screwing up my layout and the other information is doing what it should.

View Replies View Related

Ssl And Sessions

I am using an HTTPS connection and posting to an asp page that does a
redirect based on if the user is authenticated.

However, for some reason after the session is set and the user redirect
the session dies and the user logged out?

Any ideas?

The redirect looks like Response.Redirect "../welcome.asp".

View Replies View Related

ASP Sessions

I am using ServerXmlHttp in a client-side component to basically talk back to the Server within a webpage. I would like to be able to cache some information on the server so that when I callback, I do not have to reconstitue everything that I did for the intial request. However, the Sessions are different.

Is there a way to get the ServerXmlHttp session to impersonate the IE client session? Code:

View Replies View Related

Sessions

can any one tell me how to use sessions in asp for 2different users please?Is it straight forward? Never used them before, a friend said it is worth doing

View Replies View Related

Sessions And SSL

I'm trying to use a couple of Session variables within SSL.
My form submits to the same page and this is at the top of the page.

<%
Session("ShipAhead") = Request.Form("ShipAhead")
Session("Comments") = Request.Form("Comments")
%>

The form fields are populated but the Sessions are empty on my next page.
Am I missing something? Is there a problem with Sessions and SSL?

View Replies View Related

Sessions

I've just created a simple form that writes information to an
Access database using ASP. Everything works fine. My question is, would
there be any reason to use the session object other than for tracking
purposes.

Specifically, does a session have any inportance on multiple
users accessing pages and submitting the form inforamtion to the database.
I was curious about errors to the database with multiple users submitting at
the same time to the database. This is a small scale application and not
expected to have large number of hits. As stated I'm new to using ASP and
just wanted to get some input.

View Replies View Related

All About Sessions

I have used SESSIONS on mission critical pages on my site, and if sessions are not enabled / supoorted - these pages will fail. When and why would a session fail? They do not store any info client side,and rely on the server to store session objects in memory, am I correct? Would security settings or privacy controls ever stop sessions working? Which "popular" browsers dont support sessions?

View Replies View Related

Sessions

Are sessions stored on the server or the visitors PC?

View Replies View Related

Sessions

I don't know how to do anything with session and I don't need anything complicated at all. All i need it to do is like create a session when they login sucessfully. And like I want to add on every page if they don't have a session id and the correct access priveleges or watever to redirect them to the login page.how would i do that?

View Replies View Related

Sessions In Asp

I've had a look around the site but can't find exactly what i'm looking for.I'm writing a small ticket booking engine in asp and am wondering about sessions.Do I need them ? and what is involved in adding them to my code?

View Replies View Related

Sessions

I am trying to set a session with a few variables so i can retrieve them and use them to display results on another page so far my code is

This is for setting the session

Session["Name"] = "shiodsgj";
Session["MaxPrice"] = "nkfskgjk";

Retrieving the session

user.Text = (String)Session["User"];
MaxPrice.Text = (String)Session["Network"];

Do i need to create a session if so how, I understand that session.add(string, object) does this but i am recieving errors whilst doing this.

View Replies View Related

Sessions

a user logs into a website (im using acess for the database, asp for the pages), they are then in a members only area. They should have the ability to view their own personal details and change them if they wish. this should be updated in the database.

the problem is im not sure how to go about it. i seen sessions mentioned in tutorials but im still ,well, lost basically.

View Replies View Related

Sessions

I've got two different sets of ASP scripts on my server. Each set is kept in their own directory. Both sets of scripts use sessions. I want to make sure that the sessions are not accidentially shared between the two sets as they are both different applications.

Right now I'm having a problem when I do a Session.Abandon from one set of scripts it also kills the session for the other set of scripts (I believe they are both using the exact same session). Is there some way I can make sure this doesn't happen?

View Replies View Related

To Php Sessions

is there a way that i can use both php and asp on my site. So that i can switch over a session to a new php admin page?

View Replies View Related

XP And Sessions

Has anyone had any problems using sessions with XP? Are there any tricks to getting it to work properly?

View Replies View Related

Sessions

I have a database add/view/edit/delete page, and you can only get to it by logging in at login.htm (where it checks username & pw and redirects you to the a/v/e/d page.) But if you know the 'Control Panel' address.

you can just type it in and get full access. I figured I must have to check everytime to make sure they logged in. what would be the best way to do this?

View Replies View Related

Sessions

how to use sessions in asp for 2 different users?Is it straight forward? Never used them before, a friend said it is worth doing.

View Replies View Related

CDO And Sessions

I had a contact form set up using CDONTS.NewMail and it worked fine for about two years. I just went in and changed the object to CDO.Message, and adjusted a few of the properties, and while the e-mailing portion of the code still works, none of the session variables on the page work any longer.

I had both the form validation and the message on the "thank you" page set using sessions from the page with the CDO code, but for some reason using CDO cancels the sessions so that Thank You page is blank and the form validation no longer announces which fields need to be completed.

View Replies View Related

Communications Between Sessions?

Does ASP allow communications between sessions?
Usually Response sends the response to the destination from which the
Request came.

Is it possible to send the Response to some other client who is connected to
the same page at this moment?

View Replies View Related

Sessions With Localhost

I am working with sessions to check if the user is logged in.
This usually works fine and all my .asp-pages checks if: <%
session.Contents("loggedIn")=True %>

But this only works on my web-hotel
When I run the same pages on my localhost, it can't find any sessions and I
appear to not be logged In.

I have tried to set my localhost on the "trusted sites" list and "always
allow" in "override cookie handling" in my Explorer.

View Replies View Related

Cookies N Sessions

Using Session("variableName") to store data for the duration of a session. And using Response.Cookie("nameOfCookie") to store data as a "cookie" in ASP.....some questions here....

Session Variables. There's no disabling that CLIENT-SIDE is there? ASP Sessions are managed by the server, so as long as it's running fine, there's nothing the client can do to stop session variables from being created right?

"Session" Cookies? When using Response.Cookie, is that data actually written to the client's HDD like Javascript cookies would be? I noticed in MSIE 6 you can goto TOOL > INTERNET OPTIONS > PRIVACY > ADVANCED and Overide Session Cookie settings, but they don't seem to work.

I UNCHCKED to ALWAYS ALLOW SESSION COOKIES, and then did a

Code: ....

View Replies View Related

Sessions Or Cookies ?

i'm creating a shopping cart and i need to know when users add products to their shopping cart, does it load a session for each visitor, which when a new customer tries to add it opens a session for him and he closes the site the session closes enabling another visitor to start with an empty basket ?

or does it use cookies instead of sessions ?

my shopping cart does not work properly...
i need to fix it in this way, when a new visitor tries to add products to the shopping cart it doesn't display the previous products of the previous visitor.

noting that i'm not using any registration as yet......

how can i fix that?

i have a file called shop.asp which list the type of products available in the database and then when a type is clicked a list of products under this type will be displayed, then customers can add to the cart whatever they want.....

but this does not work properly because if another user tries to access the cart he'll see the previous products in there....

View Replies View Related

Sessions & Cookies

I want to do something very simpel. Make a part of my website available
only for users with a username and password. The site is mainly ASP
based. The webserver is an IIS6 and I do NOT have access to server
settings (session timeout, security,...).

I use sessions to set the validation for the users. Basically you are
redirected to a form where you can give a username and password, this is
validated with the values in a database. If the password and username
are ok a session value is set <%=Session("Validated")=True%>*.

At the beginning of each secured page I start with:
<%If Session("Validated")=False Then Response.Redirect("Login.asp") End
If%>

So if the session value "validated" is true you can see the secured
pages, else you are redirected to the logon page.

The default timeout value for session is 20 minutes. Because the session
should stay alive during the complete time of the visit I was thinking
of puting the session.timeout to 60 minutes. I set this at the beginning
of every secure page: <%Session.timeout=60%>

Now, Users keep on contacting me saying that they have to relogon quiet
often. This also seems to happen when a user is not on the website for
20 minutes already (session expired). I tested it myself and have the
feeling the I am indeed regularly redirected. Sometimes after 10
minutes, other times 30 minutes, ... There seems not to be any logic in
the time that users are redirected to the logon page.

Because the website is used to fill in a lot of long HTML forms, it is
very frustrating for the users when they are completing a form and then
pressing "Submit" being redirected to the logon page and lose all
entered data.

Is there somebody who can give me more info on the strange session
behavior? For me it is not normal that a session times out in that
unlogic way.

The only solution I can think of is passing the post information to the
logon page and then redirect after validation back to the transaction
page.

How can you reset the timeout counter on a session in ASP? What I was
thinking was that I am doing it maybe wrong?

Now the session variable that let a user have access to the site is set
once at logon time: (<%=Session("Validated")=True%*>*). Then it is
checked on every page that the user opens (<%If
Session("Validated")=False Then Response.Redirect("Login.asp") End If%>)

Would it be a good idea to re-set the variable every time a user
accesses page? Like <%If Session("Validated")=False Then
Response.Redirect("Login.asp") Else Session("Validated")=True End If%>
Would this reset the timer that times out the session? Or do I have to
add something like <%Session.Abandon%> before setting the variable
again?

What would this do on the server performance?
Is this a good way of working with sessions?

Swicth to cookies i.o. sessions?

I am open for all suggestions, please help! In the future there are also
money transactions going over this website, so it has to be a secure
method! I will use a seperate HTTPS host for this.

View Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved