Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

disadvantages of using too many sessions in asp.net

Tags:

asp.net

session

In ASP.NET, sessions enable us to store and retrieve values for a user as the user navigates ASP.NET pages in a web application. However, using too much sessions is discouraged. Why? What are the disadvantages of using too many sessions?

Thanks for those who will answer.

like image 971
user2599219 Avatar asked Oct 08 '13 02:10

user2599219

1 Answers

Memory and/or performance

If you store session state in-process (the default), all of your session data are stored in the app pool's local memory. If you have thousands of users you can see why this may be a problem. The problem gets worse when developers don't remove session variables after they're no longer needed (this is very common due to the fact that it's very hard to control the order in which web pages are accessed) and/or when users do not explicitly logout (e.g. by closing the browser window), which leaves all this memory still allocated but no longer used.

If you store session state out of process (e.g. in SQL Server or a separate state server), all of the session variables end up crossing the wire. As you add more variables, more and more data have to get pulled over. This can end up degrading performance.

Concurrency

If a web application uses session state, the data in which the session state is accessed has to be protected from race conditions and other multithreading concerns. As a result, ASP.NET automatically serializes any requests that use session. If you send two requests at the same time, ASP won't even start on the second request until the first one is finished. This can cause unexpected and poor performance on applications that use a lot of AJAX or other logic that is supposed to be asynchronous.

Infrastructure

If you're using local memory for session state, and your web app is load balanced, the load balancer must enforce session stickiness, either with IP address or a cookie. This constrains the load balancer in the way it can handle requests-- all requests for a certain session always hit the same server-- which reduces overall performance and eliminates redundancy.

Loss of data

If the app pool recycles, all sessions running on that app pool lose session state, often requiring users to log out and start over.

Poor code design

Session variables are essentially global variables. Overuse of global variables tends to lead to sloppy code structure. Variables should always be scoped as tightly as possible.

like image 196
John Wu Avatar answered Nov 09 '22 01:11

John Wu
Sign in to Comment

Related questions

Recaptcha disappears during PostBack
Long Running Tasks - Best Practice - ASP.NET 4.0, C#
What are difference between IIS (Dynamic and Static) cache,OutPutCache and browser cache
ASP.NET Web API: Optional Guid parameters
Get the index of an element inside queue c#
JQuery: Get the parent element id of a clicked element
Using appcmd to add a new site without supplying site id?
Does asp.net lifecycle continue if I close the browser in the middle of processing?
In ASP.NET, how do I add a CORS header for only TTF files?
file download by calling .ashx page
"Membership.Provider must be an instance of ExtendedMembershipProvider"
Request.URL always returns http even though SSL is enabled
jQuery Validate Cannot call method 'call' of undefined
Which is better for performance viewstate or session
I need to code a dynamic report builder in ASP.NET, where should I start?
Proper way to skip page execution after Response.RedirectToRoute
why not using Request.Cookies.Clear() in ASP.NET web forms?
Creating max width for GridView column and Wrap Text
How to redirect all httpErrors to custom url?
How to add footer to gridview

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!