Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Cache VS Session VS cookies?

Tags:

asp.net

cookies

session

state-management

What are the do's and don'ts about Cache VS Session VS Cookies?

For example:
I'm using Session variables a lot and sometimes have problems in a booking-application when users start to order products and then go to lunch and come back some hours later and continue the booking. I store the booking in the session until the user confirms or aborts the booking so I don't need to talk to the database and handle halfway bookings in the database when users just click the X in the browser and never comes back.

Should I instead use cache or cookies or some combination for this?

(Also when there is some error in the app, the session-object resets itself and I get more problems because of that)

I'm mostly doing desktop-programming and feel I lack lots of knowledge here so anyone who can expand on where to use Cache, Session, Cookies (or db) would be appreciated

Edit: From the answers it seems that a combination of DB and cookies is what I want.

  1. I have to store the booking in the database connected to a session-id
  2. Store the session-id in a cookie (encrypted).
  3. Every page load checking the cookie and fetch the booking from the database
  4. I have a clean-up procedure that runs once a week that clears unfinished bookings.

I can't store the booking as a cookie because then the user can change prices and other sensitive data and I had to validate everything (can't trust the data).

Have I got it right?

And thanks for great explanations to all of you!

like image 311
Stefan Avatar asked Feb 16 '09 12:02

Stefan

People also ask

What is the difference between session and cookie?

Cookies are client-side files that are stored on a local computer and contain user information. Sessions are server-side files that store user information. Cookies expire after the user specified lifetime. The session ends when the user closes the browser or logs out of the program.

Should I use session or cookies?

Session is safer for storing user data because it can not be modified by the end-user and can only be set on the server-side. Cookies on the other hand can be hijacked because they are just stored on the browser.

Is session storage same as cookie?

OK, LocalStorage as it's called it's local storage for your browsers, it can save up to 10MB, SessionStorage does the same, but as it's name saying, it's session based and will be deleted after closing your browser, also can save less than LocalStorage, like up to 5MB, but Cookies are very tiny data storing in your ...

Should I clear cache or cookies?

It is a good idea to clear your browser cache because it: prevents you from using old forms. protects your personal information. helps our applications run better on your computer.

1 Answers

State management is a critical thing to master when coming to Web world from a desktop application perspective.

  • Session is used to store per-user information for the current Web session on the server. It supports using a database server as the back-end store.
  • Cookie should be used to store per-user information for the current Web session or persistent information on the client, therefore client has control over the contents of a cookie.
  • Cache object is shared between users in a single application. Its primary purpose is to cache data from a data store and should not be used as a primary storage. It supports automatic invalidation features.
  • Application object is shared between users to store application-wide state and should be used accordingly.

If your application is used by a number of unauthenticated users, I suggest you store the data in a cookie. If it requires authentication, you can either store the data in the DB manually or use ASP.NET profile management features.

like image 116
mmx Avatar answered Nov 07 '22 05:11

mmx
Sign in to Comment

Related questions

How do I give ASP.NET permission to write to a folder in Windows 7?
Deploy ASP.NET MVC on Linux: Best Practices, Tools & Surprises
Purpose of EF 6.x DbContext Generator option when adding a new data item in Visual Studio
Which web server are you using in production for ASP.NET Core on a *nix server?
Difference between HttpRuntime.Cache and HttpContext.Current.Cache?
The relative virtual path '' is not allowed here
How to not serialize the __type property on JSON objects
Running sites on "localhost" is extremely slow
How to include ampersand in connection string?
How to add namespace in aspx file?
Are static methods thread safe
DateTime.Parse("2012-09-30T23:00:00.0000000Z") always converts to DateTimeKind.Local
Dropdownlist control with <optgroup>s for asp.net (webforms)?
Getting Project Root Path In Controller ASP.NET MVC?
Check if datetime instance falls in between other two datetime objects
Get DisplayName Attribute without using LabelFor Helper in asp.net MVC
Select method in List<t> Collection
How to add property to property map without class explorer?
System.Web.Http.Authorize versus System.Web.Mvc.Authorize
OAuth Authorization Service in ASP.NET Core

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!