I have the following in the web.config
<sessionState cookieName="ASP.NET_SessionId" cookieless="false" mode="InProc" timeout="1" regenerateExpiredSessionId="true"/>
however, after 1 min, the session won't expire.what can cause this?
Using this code i want to show an modal pop up to the user that "your session will be expired within 5 minutes , Click here [BUTTON] to reset your session" , here's my code :
<asp:Button ID="btnReset" Text="Reset" runat="server" OnClick="ResetSession" />
<br />
Your Session will expire in <span id = "seconds"></span> seconds.
<script type="text/javascript">
function SessionExpireAlert(timeout) {
var seconds = timeout / 1000;
seconds--;
[CODE]...
I'm surprised i couldnt find any answers.
How do i set my sessionid in my cookie to expire at the end of session? (when the browser closes or the user has been inactive for a period of tie).
The two solutions i found were
(httpcookie).Expires = HttpContext.Current.Session.Timeout
Which gave me a compile error so i dont know if the user checked his code before posting. And the other was to set the expire date to 1 day ago which my gut says is wrong. How do i do this?
im getting problem with session, when i'm not idle and still using webpage thes session expires I am using VS 2005
View 2 RepliesI want to increase the session time,By default the session will expire in 20 minutes,I want that session will expire in 1 Hour,Hw to to dat?
View 11 RepliesThe thing is that in my web application user login form (FormsAuthenticationTicket) and a session variable which does not expire on time together ..!
I have a login page where I make a FormsAuthenticationTicket and a session ...
My problem after a little time out my session, but my FormsAuthenticationTicket not do it ..
Can I somehow do that when my session expires varbial so FormsAuthenticationTicket also will expired ..
Here in my login page and logout:
[Code]....
I am using session variables for login and logout user . When user Signed In then i am create a seesion ["Log"] = 1 . And when user click on logout button i am use the session.RemoveAll() method .
But it does not working properly .After logout button when i click on the back button on browser then user automatically logged in and redirect to previous page .
here is my code on logout button
Session.RemoveAll();
Response.Cache.SetExpires(DateTime.UtcNow.AddMinutes(-1));
Response.Cache.SetCacheability(HttpCacheability.NoCache);
I set session timeout="200" but session expire within 5-6 minute .
View 7 RepliesI need to redirect my application when there is no action for three minutes. I used session timed out period in the web config file. But When I am working with my content page its not working, because my content page is inside a update panel which is in the master page, so the content page not getting refresh at all, so the session expires.
View 7 Repliesi use from a session for holding user's authority in web application.
how to i set Session.Timeout that never expire or can i use other way to holding user authority
in web application.
i need access to this authority in all page of web application
I have a littel problem.
In my asp.net application iam using Form FormsAuthentication.... and also use a session var to save a userID..
The problem is that ´when my session espire, the Form cooki is not expired.
I want form cooki to expire, when session expires....how?
Do i have to do it in Session_end event..
How do the code look like?
I am storing the returned sql resultant rows in a session variable ... so that I need not to query again and again
Session["ds"] = datasetname;
Everything is fine but when I am doing export to excel ... where at last after the export is completed I am calling the method in try/catch
try {
Response.End()
}
catch {}
But due to this, my session variable (ds) is getting expired and when I am using it next there is no rows and hence my page displays no data.
I tried going through internet and found that this is a bug it seems as identified by Microsoft and they have provided a hotfix for this but in Windows Vista .... I am running on XP.
[URL]
Is there any other workaround to this problem?
I am using session on my online application if im wrong let me know when i wana remove session i will put this code
session.remove("userid")
and also im using session for user login when user login on that time i have create one session("user_rights")
if session("user_rights") is nothing then
Response.Redirect("Logout.aspx")
end if
but some time on working time session automatically or i dont know exactly session expire and on running time it go out i mean logout...and at that time if im doing something on my application all will be lose how can i make strong my session ... here is web.config code
[Code]....
i am having login.aspx as start up page (In Admin Panel) . In login Page i am giving a value to session and i am checking that value in all pages page_load event, if expires it will redirect to login page. Consider if that session doesn't expire, at that time if i try to enter into page inside Admin Panel directly from website for first time, it should redirect to login.aspx but it will take me to that particular page (Since Session doesn't expire).
View 1 RepliesI want to expire session when wndow is directly closed. I have master page.
View 4 RepliesI am using the Forms Authentication in my application.
I have a master page and I have a default content page in the defaultUrl of the Forms Authentication. I am facing an issue: when the session expires the images and the css of the Master Page are not available.
How can I make the images available in the master page after the session expire?
There is one master page in my application. Left side it display menu and right side there is a Iframe where page will be displayed when user click on menu. so entire page will not be refreshed only Iframe will be refreshed.
Everything is working fine for me but I am facing problem when session expire, my loginUrl page display inside Iframe so user is able to see left menu.
I am thinkin that LoginPage should be display in main screen instead of Iframe.
My web.config is as below.
<authentication mode="Forms">
<forms loginUrl="Login.aspx" defaultUrl="Default.aspx" protection="All"></forms>
</authentication>
if my website when session of user expire i get the following error.
Validation of viewstate MAC failed. If this application is hosted by a Web Farm or cluster, ensure that <machineKey> configuration specifies the same validationKey and validation algorithm. AutoGenerate cannot be used in a cluster.
My website is in vs3.5
I need to show how to show countdownwhen the user session expire? if users session expire means i need to redirct user to login page.. How can i achieve this?
View 1 RepliesIf at any time i m login in that time if i want to logout from this page then i'll used response.redirect() but that time how i'll expire the session means no used after logout form a page without login...
View 5 Repliesi want to know how expire the session after certain period of time which has been created once the customer logged in to the page
View 3 Repliesi make a web site using frame but session is expire message is
Object reference not set to an instance of an object
Description: HTTP 500. Error processing request.
Stack Trace:
System.NullReferenceException: Object reference not set to an instance of an object at System.Web.UI.Control.OnLoad (System.EventArgs e) [0x00000] in <filename unknown>:0 at System.Web.UI.Control.LoadRecursive () [0x00000] in <filename unknown>:0 at System.Web.UI.Page.ProcessLoad () [0x00000] in <filename unknown>:0 at System.Web.UI.Page.ProcessPostData () [0x00000] in <filename unknown>:0 at System.Web.UI.Page.InternalProcessRequest () [0x00000] in <filename unknown>:0 at System.Web.UI.Page.ProcessRequest (System.Web.HttpContext context) [0x00000] in <filename unknown>:0 My Web Config file is<configuration> <!-- store the database connection info here --> <appSettings> <add key="sBook_StoreDBConnectionString" value="Provider=Microsoft.Jet.OLEDB.4.0;User ID=Admin;Data Source=C:Program FilesCodeChargeExamplesBookStoreBookStore_MSAccess.mdb;Persist Security Info=False" /> </appSettings> <system.web> <httpRuntime executionTimeout="1000" maxRequestLength="2000000" /> <!-- DYNAMIC DEBUG COMPILATION Set compilation debug="true" to enable ASPX debugging. Otherwise, setting this value to false will improve runtime performance of this application. Set compilation debug="true" to insert debugging symbols (.pdb information) into the compiled page. Because this creates a larger file that executes more slowly, you should set this value to true only when debugging and to false at all other times. For more information, refer to the documentation about debugging ASP.NET files. --> <compilation defaultLanguage="c#" debug="true" /> <!-- CUSTOM ERROR MESSAGES Set mode="on" or "remoteonly" to enable custom error messages, "off" to disable. Add <error> tags for each of the errors you want to handle. --> <customErrors mode="Off"/> <!--<customErrors mode="On" defaultRedirect="Login.aspx"> <error statusCode="500" redirect="Login.aspx"/> <error statusCode="404" redirect="Login.aspx"/> <error statusCode="403" redirect="Login.aspx"/></customErrors> --> <!-- AUTHENTICATION This section sets the authentication policies of the application. Possible modes are "Windows", "Forms", "Passport" and "None" --> <authentication mode="None" /> <!-- APPLICATION-LEVEL TRACE LOGGING Application-level tracing enables trace log output for every page within an application. Set trace enabled="true" to enable application trace logging. If pageOutput="true", the trace information will be displayed at the bottom of each page. Otherwise, you can view the application trace log by browsing the "trace.axd" page from your web application root. --> <trace enabled="false" requestLimit="10" pageOutput="false" traceMode="SortByTime" localOnly="true" /> <!-- SESSION STATE SETTINGS By default ASP .NET uses cookies to identify which requests belong to a particular session. If cookies are not available, a session can be tracked by adding a session identifier to the URL. To disable cookies, set sessionState cookieless="true". --> <sessionState mode="InProc" stateConnectionString="tcpip=localhost:42424" cookieless="false" timeout="60" /> <!-- GLOBALIZATION This section sets the globalization settings of the application. --> <globalization requestEncoding="utf-8" responseEncoding="utf-8" /> </system.web> <connectionStrings> <add name="mydb" connectionString="Server=localhost;User=SYSDBA;Password=datacenter;Database=/opt/db/erp2.fdb;Min Pool Size=5;Max Pool Size=60;Connect Timeout=30" providerName="FirebirdSql.Web.Providers" /> <add name="mydb2" connectionString="Server=localhost;User=blackberry;Password=acgmkRMS;Database=/opt/db/pwd.fdb;Min Pool Size=5;Max Pool Size=60;Connect Timeout=30" providerName="FirebirdSql.Web.Providers" /> </connectionStrings></configuration>
how to maintain the session that doesn't expire unless and until user logout.Â
View 1 RepliesI'm looking for some smart ideas on how to quickly find all usage of session state within an existing asp.net (MVC) application.
The application in question was the subject of outsourced development, and has been running fine in production. But we recently realised that it's using InProc session state rather than (our preferred route) StateServer.
In a small scale test, we switched it over to StateServer, and all worked fine. However, when we deployed to production, we suddenly experienced a large number of errors. I'm not sure if these errors were caused by this change (they were actually complaining about database level problems), but removing the change allowed the application to function once again (this may have just been because it caused a recycle to occur).
So before I try switching it again, I'd like to perform a thorough audit of all objects being placed in the session (I'd previously taken a quick look at a couple of controllers, and they seemed fine). If I had full control over the code, this is the kind of place where I'd just comment out the class (to compile and find the various ways of reaching the session class), then comment out the accessors, hit compile, and visit each error. But I can't do that with built in .NET framework types.
I decided to try using Reflector. I've analyzed the "Used By" for each of the following:
System.Web.HttpSessionStateBase.set_Item(String, Object) : Void
System.Web.SessionState.HttpSessionState.set_Item(String, Object) : Void
System.Web.SessionState.HttpSessionState.set_Item(Int32, Object) : Void
System.Web.HttpSessionStateBase.set_Item(Int32, Object) : Void
System.Web.HttpSessionStateBase.Add(String, Object) : Void
System.Web.SessionState.HttpSessionState.Add(String, Object) : Void
(and checked that we don't use TempData anywhere). Am I missing any other routes by which items can end up in the Session?
Quick question: Is there a "per-user" data storage object (similar to Session) that I can store data in the global scope (similar to HttpRuntime.Cache)? Almost as if Session and HttpRuntime.Cache had a baby.
Full Background: I have a ASP.NET website that was originally written for a single thread. Now I changed it so that certain actions will spawn a background thread and the browser polls a service to get status updates.
The problem I am having with this is that certain pieces of data are stored into the HttpContext.Session[] object (membership authentication token, for example). These pieces of data need to be unique to each user and accessible to the background thread. Session is not available to the background thread.
I am aware of HttpRuntime.Cache but that would require micromanagement to segment out the users and to expire it at the same time the session is expired. Session, on the other hand, automatically expires this things at the right times that I want it too and is already used by things like the SqlMembershipProvider.
My question is, is there something that behaves similar to the Session but exists in the global scope?
