RedirectFromLoginPage persistent cookie expiration

[jester]

Passing true for the second parameter of RedirectFromLoginPage creates a
persistent cookie. When does this cookie expire?

[John Paul. A]

Hi jester,
Please check your config file. If everything goes right, please check the
security settings for the dll.
Rgds,
John Paul. A

"jester" wrote:

>
> Passing true for the second parameter of RedirectFromLoginPage creates a
> persistent cookie. When does this cookie expire?
>

[John Paul. A]

Hi jester,
Please ignore my previous reply, becoz my reply to DPAPI has come here.

Regarding the RedirectFromLoginPage - persistent cookie, you can control the
expiration date, it is also a good practice too..
Here how you can do?

If persistentCookie And expirationDays > 0 Then
' Get a reference to the cookie just created.
Dim cookie As HttpCookie = Response.Cookies _
(FormsAuthentication.FormsCookieName)
' Set its expiration date.
cookie.Expires = Now.AddDays(expirationDays)
' Ensure the cookie can travel only over https.
'cookie.Secure = True
End If

Rgds,
John Paul. A


"jester" wrote:

>
> Passing true for the second parameter of RedirectFromLoginPage creates a
> persistent cookie. When does this cookie expire?
>

[jester]

But what would be the default cookie expiration if I don't set it explicitly?

"John Paul. A" wrote:

> Hi jester,
> Please ignore my previous reply, becoz my reply to DPAPI has come here.
>
> Regarding the RedirectFromLoginPage - persistent cookie, you can control the
> expiration date, it is also a good practice too..
> Here how you can do?
>
> If persistentCookie And expirationDays > 0 Then
> ' Get a reference to the cookie just created.
> Dim cookie As HttpCookie = Response.Cookies _
> (FormsAuthentication.FormsCookieName)
> ' Set its expiration date.
> cookie.Expires = Now.AddDays(expirationDays)
> ' Ensure the cookie can travel only over https.
> 'cookie.Secure = True
> End If
>
> Rgds,
> John Paul. A
>
>
> "jester" wrote:
>

> >
> > Passing true for the second parameter of RedirectFromLoginPage creates a
> > persistent cookie. When does this cookie expire?
> >

[John Paul. A]

Dear jester,
The default time-out limit is 20 minutes.
Please see the Microsoft documentation "Configuring ASP.NET Applications to
Use the Appropriate Session State"

[url]http://www.microsoft.com/resources/documentation/WindowsServ/2003/all/deployguide/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/all/deployguide/en-us/iisdg_net_mshe.asp[/url]

Sorry.. The URL is bit long...

Rgds,
John Paul. A

"jester" wrote:

>
> But what would be the default cookie expiration if I don't set it explicitly?
>
> "John Paul. A" wrote:
>

> > Hi jester,
> > Please ignore my previous reply, becoz my reply to DPAPI has come here.
> >
> > Regarding the RedirectFromLoginPage - persistent cookie, you can control the
> > expiration date, it is also a good practice too..
> > Here how you can do?
> >
> > If persistentCookie And expirationDays > 0 Then
> > ' Get a reference to the cookie just created.
> > Dim cookie As HttpCookie = Response.Cookies _
> > (FormsAuthentication.FormsCookieName)
> > ' Set its expiration date.
> > cookie.Expires = Now.AddDays(expirationDays)
> > ' Ensure the cookie can travel only over https.
> > 'cookie.Secure = True
> > End If
> >
> > Rgds,
> > John Paul. A
> >
> >
> > "jester" wrote:
> >

> > >
> > > Passing true for the second parameter of RedirectFromLoginPage creates a
> > > persistent cookie. When does this cookie expire?
> > >

[jester]

Thanks, John Paul.

"John Paul. A" wrote:

> Dear jester,
> The default time-out limit is 20 minutes.
> Please see the Microsoft documentation "Configuring ASP.NET Applications to
> Use the Appropriate Session State"
>
> [url]http://www.microsoft.com/resources/documentation/WindowsServ/2003/all/deployguide/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/all/deployguide/en-us/iisdg_net_mshe.asp[/url]
>
> Sorry.. The URL is bit long...
>
> Rgds,
> John Paul. A
>
> "jester" wrote:
>

> >
> > But what would be the default cookie expiration if I don't set it explicitly?
> >
> > "John Paul. A" wrote:
> >

> > > Hi jester,
> > > Please ignore my previous reply, becoz my reply to DPAPI has come here.
> > >
> > > Regarding the RedirectFromLoginPage - persistent cookie, you can control the
> > > expiration date, it is also a good practice too..
> > > Here how you can do?
> > >
> > > If persistentCookie And expirationDays > 0 Then
> > > ' Get a reference to the cookie just created.
> > > Dim cookie As HttpCookie = Response.Cookies _
> > > (FormsAuthentication.FormsCookieName)
> > > ' Set its expiration date.
> > > cookie.Expires = Now.AddDays(expirationDays)
> > > ' Ensure the cookie can travel only over https.
> > > 'cookie.Secure = True
> > > End If
> > >
> > > Rgds,
> > > John Paul. A
> > >
> > >
> > > "jester" wrote:
> > >
> > > >
> > > > Passing true for the second parameter of RedirectFromLoginPage creates a
> > > > persistent cookie. When does this cookie expire?
> > > >