Dealing with Session State timeouts

Ask a Question related to ASP.NET General, Design and Development.

  1. Justin Dutoit #1

    Default Dealing with Session State timeouts

    Hey. What is the best practice for dealing with session state timeouts in a
    web app? eg Session_OnEnd Sign them out, so they redirect to Login on the
    next request.
    Also, for lower security situations, like a home shopping site used from a
    secure home environment, how long should the session timeout be?

    Cheers
    Justin Dutoit



    Justin Dutoit Guest
    Reply With Quote Reply With Quote

    2. Similar Questions and Discussions

    1. Session state IIS (Machine Key | Load Balanced Session)
      This is a classic ASP group. Try microsoft.public.dotnet.framework.aspnet "Fred" <me@me.com> wrote in message...
    2. session timeouts
      I've had this problem for years, but have never been able to figure it out. I often pass session information via the URL. On our local development...
    3. session timeouts above 20 minutes?
      I don't know if this has been addressed before but I am using CF 5.0 and it seems that I can't get the session timeout to go over 20 minutes, no...
    4. PHP SESSION timeouts
      Hi, No, there is not! You have to manage yourself the timeout, for instance through a timestamp, which you verify on each request. PHP does not...
    5. Setting Session State timeouts
      Hey. For lower security situations, like a home shopping site used from a secure home environment, how long should the session timeout be? I'd like...
  2. Steve C. Orr, MCSD #2

    Default Re: Dealing with Session State timeouts

    ASP.NET has this functionality built in. It's called Forms Authentication.
    It is easily configured in your web.config file.
    When the session times out they'll automatically be taken to the login page
    on their next page request.

    Here's more information:
    [url]http://www.dotnetbips.com/displayarticle.aspx?id=9[/url]

    --
    I hope this helps,
    Steve C. Orr, MCSD
    [url]http://Steve.Orr.net[/url]


    "Justin Dutoit" <anon@anon.com> wrote in message
    news:ehWLJowWDHA.212@TK2MSFTNGP12.phx.gbl...
    > Hey. What is the best practice for dealing with session state timeouts in
    a
    > web app? eg Session_OnEnd Sign them out, so they redirect to Login on the
    > next request.
    > Also, for lower security situations, like a home shopping site used from a
    > secure home environment, how long should the session timeout be?
    >
    > Cheers
    > Justin Dutoit
    >
    >
    >

    Steve C. Orr, MCSD Guest
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139