开发者

Session cookies across browser processes

问答 作者:

Is it possible to use session cookies across browser sessions (specifically Internet Explorer). I would like a user to log in to my si开发者_开发问答te and therefore get a cookie and when the user opens another IE process have that session cookie authenticate the user.

At the moment it is find if the user opens a new window or tab as this resides in the same process.

Session cookies expires as soon as the browser is closed (this is the default behavior with PHP session cookies at least). In Firefox, starting two processes with share both sessions on your site; with IE, it won't, probably because "session" cookies aren't shared between processes. To overcome this, you could handle your own session ID in a cookie that doesn't have 0 as expire time but a timestamp in the future (let's say 30 days ahead). This way, the cookie might survive between processes but you'll have to rely on your own ID to handle session information.

So you actually want something like "Remember me on this computer" feature? Then you need to create another cookie yourself with a long lifetime, e.g. one year. In this cookie with a specific and predefinied name you should set a long, all-time unique, hard-to-guess autogenerated string (like a hash). You store the same value in the server side in a database table as PK, along with the user ID (and if necessary also user IP as optional security and the cookie TTL for automatic cleanup). Now, on every request check if the cookie is there and then do the automatic login thing with the user ID associated with the cookie value in the DB table.

In Global.asax file of your application put this code

Public Function Session_Start()
{
    HttpCookie myCookie = HttpContext.Current.Request.Cookies["ASP.NET_SessionId"];
    if(myCookie != null)
    {
         myCookie.Expires(3);
    }
}

This will keep your cookie alive and hence your session will be alive. If doing this does not solve your problem then in addition make you session state to "StateServer" instead of "InProc" which is by Default, in web.config

继续阅读:cookiesinternet-explorersession-state

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9