HTTPS ASPX Page Redirect To HTML Page Logs User Out - As If Session Lost?
Sep 10, 2010
Building asp.C# shopping app that is using a hosted payment page to process payments (using posting of data to a hosted payment page). SSL certificate is signed and installed.
Flow:
Prelim) (HTTPS) Users authenticate using asp Login control
1) Users add items to cart.
2) (HTTPS)Users go to checkout page.
3) Users finalize their order, then click pay now after agreeing to T&C.
4) Server gets cart data (from MSSQL2005) and sets a transaction cookie (expiry set to 20 mins).
5) (HTTPS) Server Response.Redirects to an html page (in the same folder as the login protected pages).
6) Html page reads transaction cookie data and generates form fields.
7) (HTTPS) Html page posts data to hosted payment page (php).
8) User enters payment info and clicks pay now.
9) (HTTPS) hosted payment page posts info back to a .aspx page that checks if payment OK.
10a) If payment !OK, redirects to a declined page.
10b) (HTTPS) If payment OK, sets a verification cookie (expiry set to 20 mins). Then redirects to another html page.
11) Html page reads cookie data and generates form fields.
12) (HTTPS) Html page posts data to hosted verification page (php).
13) Verification page verifies (of course), if transaction ok.
14) (HTTPS) verification page posts data to a .aspx page that checks if verification OK.
15) If verification OK, process orders and do receipt stuff.
Issue:
This control flow was tested on an unsigned dev environment. SSL was being enforced, if needed on the unsigned SSL certificate. So we'd get prompts that certificate may be bad, but the control flow worked seamlessly.
However, now live with a signed SSL certificate, going from step 5 to 6, we are encountering a situation where some users (not duplicated every time, but verified that it does occur) when they click pay now and are redirected to the html page, they are forced back to the ~/login.aspx page (as if they were logged out).
Things to note:
a) The session did not time out.
b) The browsers have cookies and javascript enabled.
c) I can process the entire flow seamlessly on the same machine with other accounts, and occasionally, the same account.
So, basically, I'm stumped... Is this a viewstate error? A login control bug that won't let me redirect to an html page because it is now using a real SSL? Anyone have any experience with this kind of deal? I'm at a loss for solutions at this point.
View 1 Replies
Similar Messages:
May 16, 2010
I'm going to add my own user control LoginBox to my MasterPage.
I want to just refresh the page the user is currently on when he logs in to the system. How can I accomplish this?
View 2 Replies
Dec 28, 2010
i use formsauthentication for login. but i wanna register user logs logs table. i can access username page.user.identity.name, but how can use userid?
View 4 Replies
Mar 1, 2010
I have an webforms app that loses it's session variables on response.redirect. I've read Bertrand Le Roy's blog about this and still can't get it to work. The page works in production. However, when I try in the VS2k8 IDE, the session variables are there right before response.redirect and on the first line of the next page, the variables are nothing. I've confirmed the session id is the same so I'm not skipping sessions. The target page is relative so the web server doesn't think we're changing sites (as confirmed by the sessionid).
Response.Redirect("menu.aspx", False)
View 1 Replies
May 30, 2010
I need to force SSL when going to the final checkout page (for example from default.aspx to checkout.aspx).
I need to pass variables to this check out page and tried to use server.transfer(https://www.mydomain.com/checkout.aspx). I then use previous page .Fincontrol to read text box and label name to this check out page. If I only do the server.transfer("~/checkout.aspx") then my I can read all vakues of my controls from the passing default.aspx page.
But when I force https:// then I cannot read the control values from default.aspx page.
Please give me some tips on how to get control values to the https:// destination page or if you have another tips on how to do it the right way, please let me know.
View 8 Replies
Mar 1, 2010
Got a windows forms user control dll embedded in an asp page using the html form control object tag as it needs to run client side. The windows form control does something and then needs to redirect to a another aspx page passing a parameter obtained from a calculation in the windows form contro dll. Is the redirect possible from the windows form control (same session id needs to be used) since obviously you can't call response.redirect since its not part of the server side wep page.
View 3 Replies
Mar 10, 2010
How i redirect the page to Login page automatically if session Expires .
View 7 Replies
Sep 7, 2010
i have 2 page,
1.login.aspx --- 2.welcome.aspx
in my login.aspx im storing username into sesssion as below:
Session["usernm"] = txtUsername.Text;
in my welcome.aspx page
in page_load event
if (Session["usernm"]==null)
{
Response.Redirect("Login.aspx");
}
here if i manulally paste the url ( http://localhost:4125/Loginado/welcome.aspx) it should go to login.aspx for user credentials
but its going directly to welcome.aspx page.
View 5 Replies
Sep 16, 2010
How we transfer my session from http page to https page.
View 3 Replies
Feb 28, 2011
I have the following pages structure in my asp.net 3.5 website. i want if anybody directly access any page of my site as [URL] then it will automatically redirected to [URL] How to do this using vb.net, asp.net
View 2 Replies
Jan 26, 2011
We are currently running an asp.net application with 3.5 framework, using a SQL 2008 back-end. We have found that when we go from http to https we lose our session. Basically you come in on Server01 in http, add an item to your cart go to the secure checkout page (https) and you are now on Serve
View 2 Replies
Jun 9, 2010
I have a site that has a mix of http and https pages. Under the root of the site, one folder has all the http pages and another has all the https pages. Login is over https and sends the user to the other pages. When a session expires the forms authentication redirects to the Login page but the browser uses http and the user gets a 403 error. Is there any way to override the session timeout to send it to https?
View 1 Replies
Dec 1, 2010
i want to write aspx page html from aspx.cs page on page load..
i hav already used div.innerHtml...
i want to write below code in aspx page from aspx.cs page
[code]....
View 5 Replies
Apr 26, 2013
I have made a web page in which there is login screen when user login it goes next page but my problem is if i directly enter the url of that page it open. I want it should not open unless the user log in...
View 1 Replies
Jan 31, 2011
I was wondering when a user logs in using the login control for ASP.NET, how do we choose where the user goes after? Do we configure this in the web.config file?
View 2 Replies
Mar 17, 2011
Other pages (aspx) are working fine on both http/https, only ashx gives response 404 on https, I used firefox firebug to investigate it.
I have two same virtual directory on IIS, one is mapped for https where this ashx is not working.
I guess some kind of mapping is missing for https on server, not sure where this kind of mapping is stored?
View 1 Replies
May 4, 2010
I have written custom code for login and logout...When use clicks on logout button the current session is closed and user is redirected to a login.aspx page...The problem is that when a user click a back button on internet explorer it the previous page he was navigating is shown to him...(altough he cant perform any operation as session is null and their is condition in page load that if session is null user should be redirected to login page)May i have to clear cache of client ??
View 3 Replies
Jun 11, 2013
i am developing one application in mvc my problem is after login it will redirect to some page if i copy url and paste it in another browser its showing error in application but i need to display home page?
how to solve this ?
View 1 Replies
Apr 23, 2014
how to maintain the session that doesn't expire unless and until user logout.
View 1 Replies
Jul 27, 2010
I am developing an application using Visual Studio 2010 and SQLServer 2008. My application has two pages and the first page contains a GridView with all the records "User Administration" and when user click on any Username (template field ->linkbutton) I read the USERID like this.
Session["UserID"] = e.commandArgument;
Response.Redirect("UserOperations.aspx");
which takes it to the Data Entry page where user updates the information and save the data.
The problem i am facing is that when I hit the browser REFRESH button couple of times the session variables looses the value which is trouble for me as I am using Session Variables for different purposes.
View 10 Replies
Apr 26, 2010
I have a ascx page on load of the page I save few data in the HttpContext Session, on selection of data in the screen I reload the page with relevant data for the selection. Until here the data in the session exists. But on click of a button say ok button to navigate to next page. all the data in the session is lost. But the same works in windows 7 and windows server 2008 not in windows XP. are there any configuration difference in windows 7 and XP.
View 1 Replies
Mar 19, 2011
I have a startup page as Menu.aspx I want to redirect this page to login.xaml so that whenver user type Menu.aspx it should open login.xaml then this .aspx page.
View 1 Replies
Mar 16, 2011
I am using Forms Authentication and have stored the credentials in the Web.config since there are only two credentials. Currently I have a login page that on authentication would redirect to the default.aspx page or the return url. I want to redirect to a different page i.e. form1.aspx or form2.aspx based upon the credentials.
Currently using
if (FormsAuthentication.Authenticate(txtUser.Text, txtPassword.Text))
{
FormsAuthentication.RedirectFromLoginPage(txtUser.Text, false);
}
View 2 Replies
Sep 27, 2013
how can i make next or previous button in asp.net? for example, in collection will display all product that i sell...and i want the URL appear like this "/collections/other-fashion?page=1", when user click next, the URL change to "/collections/other-fashion?page=2"..is it i have to make many form? i just want to use 1 form...im using vb languange
View 1 Replies
Apr 26, 2010
asp.net session data lost on postback of the page in windows XP.
View 4 Replies
