Home » Categories » Multiple Categories

Issue with Storing Session
Article Number: 301 | Rating: Unrated | Last Updated: Tue, Mar 24, 2015 at 10:30 PM
Sometimes, the session on your website can expire earlier than you expect. The followings are the steps you need to check:

1. In .Net, you cannot use authentication without session. The session ID can be transmitted with client either in a cookie, or in the page url. There is no need to choose between session and cookie, as the cookie actually holds the session id.

2. On the server, session data is stored either in memory (in process or outside process), or in database.

3. The cookie is encrypted using a key called the "machine key". By default, everytime the app pool is recycled, a new machine key is created and the session data that is in memory is lost. On a shared server, this results in the end of a session, since the cookie cannot be decrypted anymore.

The solution: Store a static machine key in the web.config of the web application.

Also, storing the session data in the database instead of memory (in proc) can be useful to preserve sessions.
Posted by: ASPHostServer Administrator - Tue, Mar 24, 2015 at 10:30 PM This article has been viewed 1173 times.
Filed Under: General Issue, Programming / Troubleshooting
Attachments Attachments
There are no attachments for this article.
Related Articles RSS Feed
How do I redirect a subdomain to a subdirectory?
Viewed 1766 times since Tue, May 1, 2012
How to Solve an Error Message "Validation of viewstate MAC failed"
Viewed 5257 times since Tue, Apr 2, 2013
How to solve ReportViewer error message: "An error has occurred during report processing. Input string was not in a correct format"
Viewed 3622 times since Tue, Jun 18, 2013
How do I query MySQL database in ASP.NET?
Viewed 3363 times since Tue, May 1, 2012
My site is showing 500 Internal Server error message. What is wrong here?
Viewed 1580 times since Thu, May 3, 2012
Sample Code to Send email using ASP.NET1.1
Viewed 2571 times since Tue, May 1, 2012
Domain Name Server (DNS) Amplification Attack
Viewed 1436 times since Wed, Oct 15, 2014
I receive this error message: "Directory Listing Denied. This Virtual Directory does not allow contents to be listed."
Viewed 3322 times since Mon, Apr 30, 2012
Do you allow custom COM components?
Viewed 1224 times since Tue, May 1, 2012
Do you support ASP.NET MVC 6?
Viewed 1250 times since Wed, Feb 17, 2016
  • Icon SubscriberSubscribe to Article
  • Icon PrinterPrint Article
  • Icon EmailEmail Article to Friend
  • Icon PDFExport to PDF
  • Icon MS-WordExport to MS Word
  • Icon TwitterTweet This Article
  • Icon DiggDigg It
  • Icon StumbleuponStumble Upon
  • Icon de.icio.usDel.icio.us
Article Rating (No Votes)
Rate this article
Powered by ASP.NET Hosting Server