Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Setting Path and Expiration for session cookie in asp.net

Tags:

html

asp.net

Anything I have tried didn't work. Currenly I have following code to change asp.net session cookie expiration date and path, but asp doesn't want to listen to me. I sends same cookie in Set-Cookie header two times sometimes, sometimes it sends it's default cookie ignoring path and expiration date, sometimes it sends everything as expected, and sometimes it doesn't send Set-Cookie at all. What should I do. This drives me nuts :(

My code in Global.asax

protected void Application_PreRequestHandlerExecute(Object sender, EventArgs e)
{
  /// only apply session cookie persistence to requests requiring session information
  if (Context.Handler is IRequiresSessionState || Context.Handler is IReadOnlySessionState)
  {
    var sessionState = ConfigurationManager.GetSection("system.web/sessionState") as SessionStateSection;
    var cookieName = sessionState != null && !string.IsNullOrEmpty(sessionState.CookieName)
      ? sessionState.CookieName
      : "ASP.NET_SessionId";

    var timeout = sessionState != null
      ? sessionState.Timeout
      : TimeSpan.FromMinutes(20);

    /// Ensure ASP.NET Session Cookies are accessible throughout the subdomains.
    if (Request.Cookies[cookieName] != null && Session != null && Session.SessionID != null)
    {
      Response.Cookies[cookieName].Value = Session.SessionID;
      Response.Cookies[cookieName].Path = Request.ApplicationPath;
      Response.Cookies[cookieName].Expires = DateTime.Now.Add(timeout);
    }
  }
}
like image 429
Sergej Andrejev Avatar asked Nov 05 '22 15:11

Sergej Andrejev

1 Answers

Maybe if you try using the system call, and not direct change the cookies..

HttpContext.Current.Session.Timeout = 20;

update

After your comments, and from what you say to me, is that you try to use the same cookie, for 2 different applications, and set different time outs. But asp.net can keep only one session for every cookie. To solve that you must use 2 different named cookies, and not different cookie path.

On each application directory, on web.config, change the 

<sessionState cookieName="AppSessionCookieName" ..>

Reference for more infos
https://msdn.microsoft.com/en-us/library/h6bb9cz9(v=vs.100)

Hope this solve the problem.

like image 65
Aristos Avatar answered Nov 11 '22 05:11

Aristos
Sign in to Comment

Related questions

ViewContext.RouteData.Values["action"] is null on server... works fine on local machine
Encrypting web.config on shared hosting
Deploying code from Subversion Repository to web server without building
What are some things Mono is not a good fit for?
ASP.NET whitespace or %20 in URL
Minimizing the pain in implementing printable reports
Error when calling renderstream in reporting services 2008 webservice
MVC - How best to organize commonly used drop-down lists in many views
FormsAuthentication authCookie is null only for some users
Bypassing forms authentication when a query string is passed
Asp.Net - Can the absolute expiry for a Cache with CacheUpdateCallback be smaller than 20 seconds?
ASP.NET+ MySQL on a large scale. Recommended? [closed]
What should I return from the UI layer to the business layer?
Why Application_Start fire multiple times in Global.asax?
How to properly encode anchor hrefs
Code Access Security - Basics and Example
How to intercept and pre-process QueryStrings in Asp.Net
Run an ASP.NET website in a subfolder
Unable to use session in ASP.Net vNext Project
Writing Long-Polling WCF Service

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!