Is it possible to set the sessionID = value?
I am storing a shopping cart in a in a temporary table and with the sessionID identifying which items belong to the different users. Ideally I want to set it to a random GUID or number so it will make it very hard to guess the next session ID and gain access to another cart if they knew what they were doing.
Any ideas on how to set the sessionID value? Do I need to go that mush in to detail?
What Content Mgmt Systems do forum members and ASP pros use?
I'm looking for something fairly sophisticated (WYSIWYG editor, user permissions, versioning, audit trail, etc) that doesn't cost an arm and a leg. It should be pure ASP, and (naturally) available with full source code.
I want to allow a user to select a windows folder for reading. I have tried
to work it out without success. Can anyone help me out or point me in the
right direction. I am an experienced VB6 programmer but this is my first
ASP.Net project.
i have a database with one table... there are about 10-20 records in the table. i would need to create a page that displays a few descriptive fields of the records. just something like this.
ID NAME PRICE
1 type1 345
2 type2 567
3 type4 1000
just a simple list like this in a table, also each record would need to act as its own hyperlink, so when clicked on. using the primary key i presume, it loads another page specifically for that record. almost like a catalogue..if someone could please direct me to a few tutorials or online examples of this kind of procedure.
i need to choose a data, randomly, in a database based n category (cat1, cat2, cat3, cat4, cat5, cat6). i only need to show 1 data of each category in the html page. kindly inform where to find a sample tuts for this.
View Replies View RelatedI've just had a problem with an ASP page not connecting to one of our Oracle databases. It turns out that the web server has Oracle 8.1 and Oracle 9.2 installed and that my
ASP page was trying to connect with Oracle 8.2. The TNSNAMES.ORA file for this version of Oracle is not maintained and did not have the correct entry I need.
Is it possible to force my ASP pages to use Oracle 9.2 until the migration is complete and Oracle 8.1 is removed?
My connection string looks like this:
Session("PROVIDER") = "Provider=OraOLEDB.Oracle;Data
Source=ht;User Id=" + Request.form("username")
+ ";Password=" + Request.form("password")
I like to validate 2 textboxes. Users ken choose to enter either one. Therefore if nothing is entered for both, im suppose to prompt him to enter at least one. If he enters value into both txt boxes, I'll prompt him again. Dunno to post this here or @ javascript forum.
View Replies View Relatedi have a folder contain many images in a server, i got to do a web application allow user to choose image the from the folder in the server to be their signature, may i know how to get into the image in the folder on the server?because from what i know i can do a textfield to browse to the file in my local machine, but how do i browse throught the fiel in the image folder that i mention?
View Replies View RelatedI have a SQL 2000 stored procedure with several recordsets. Is there a way to query a specific recordset in a stored procedure, or will I have to loop through each recordset?
View Replies View Relatedill have a database with 1 table and 3 fields:
ID FIRSTNAME LASTNAME
(the ID field will be the auto incrementing index)
there might be 10 records in the DB, there might be 10,000. i need to open the DB and randomly select a record (and then display the name, which i dont have a problem with)
how can i randomly select a record? im guessing id have to open a recordset and check the count to get the number of records, so lets say there were 100 records. i imagine i would have to generate a random number between 1 and 100....
how to find the session expired or not without using any session varaibles?
View Replies View RelatedI have a site that I'm trying to migrate to ASP.NET from ASP, and the
foremost stumbling block I'm hitting is session state between the ASP
and ASP.NET applications. In order to access this information, I'm
doing a HttpWebRequest from the ASP.NET side into an .asp page,
passing the session name on the get in order to request it from the
ASP side and write it back to the response stream, giving ASP.NET
access to it. Of course I change sessions each time I make the call
from the ASP.NET side.
Soooooo, I'm thinking to myself, "Self, shouldn't you be able to fake
out the server by getting the session cookie from the initial usage of
the asp, pass that data to the ASP.NET, and use that to send a request
back the ASP side under the appropriate session?"
From a real high level, I enter the site via a .asp page. This page
in turn calls .aspx page from within a frame ......
I want to create an administration page which lists all the current users who are on the site at the moment.
I know coldfusion has this feature built in using the SessionTracker class... does ASP have something similar? If not... is there any way I can just iterate through all the session files on the server...?
I have a site developed using ASP, but each page I enter has a different session id when accessing the site using the domain name of the site. When accessing the site from my network and using the internal IP address, it is OK. Any ideas?
View Replies View RelatedI want the suggestion what is better for use between:
Session.abandon
&
Session.Contents.Remove
I wrote a website, which uses the session to store and track some vars.
Now I am gonna to covert it to desktop application by Activesite compiler 5, however, it doesnot support session , cookie , application() . SO ,I have no idea to find something can instead of session.
My orignal processing: Session -> modify Session var -> store to Database.
There is a problem about ASP session ID. ASP session is implemented by storing session id in a session cookie, but I read this cookie in ISAPI Filter, get a string as following:
ASPSESSIONIDQADCQQTS = IAOFCBBCGDGMDGCNJIKPNBAN
But the real session ID is 554851848. (Real sessionID is sessionID property the ASP session object)
Problem is what is relation between them? And how to get real session ID from cookie session ID.
I did a session("adminlogin")=1, if I post it to the same page, it returns true. But if I response.redirect to another page. This value doesn't exist anymore. This is on the actual server where all the ms security is updated.
The same script worked okay on my test server (the security patch not patched yet.)
Has anyone encountered this? How do you overcome it?
I tried searching the net it says the problem lies with a ms security patch. How I wish I can unintall that patch.
when does a sesson object expire?
- at the end of 20 minutes
- after they close their browser ? does that end the session?
I have a home page in html with two buttons to call my main.asp in another window my problem is:
1-From my home page I open another web page my main menu, this new page have a SessionID. (OK)
2-If I open another web page from the same home page, this new page have the same SessionID as the page open in first step
I want to get a new SessionID for every page I open from my home page and don't want to abandon the first session...
I have asp and asp.net web application. When I run it in IE7 in first tab it
starts a new session. When I open second tab and browse to the same site the
new session is not started (infact I need to have new session there).
Whereas, 2 IE instances generate 2 unique sessions. Only issue is with IE
tabs. Firefox also has similar things but lets not talk about firefox here.
I am more concerned with IE only.
In my login script I set session("User") = rs("User") the session timeout is set to 20 min
Do I need to setup some kind of update session variable on each page so that the timeout does run out or does iis update the variable aslong as I'm browsing the website ?
And another thing, <% application("something") %> works fine on my test server but once I implement it onto the main webserver I dont get any text out, is there some kind of switch that enables this function ?
How can I know if a user session had timed out ?
I always get an error in my asp page when I try to access
my session variable if it timed out.
My buttons default as you can see in the code. But I now want to take what is already choosen in database and chose apropriate button. Can I use a session to choose a radio button?
Code:
<TD><b><font face="Arial" color="#000080">Password</TD>
<TD><input type ="text" value="<%=Password %>" input name="Password" size="50" ><input type ="Hidden" value="<%=userNumber %>" input name="userNumber" size="50" ></TD>
</TR>
<TR>
<TD><b><font face="Arial" color="#000080">Billing Choice</font></b></TD>
<TD><fieldset style="padding: 2">
<input type="radio" value="Monthly" checked name="R1">Monthly
<input type="radio" name="R1" value="Quarterly">Quarterly
<input type="radio" name="R1" value="Annually">Annually</fieldset><p>Hold
Billing Date <input type="text" name="NextBillDate" size="20" Value=<%=NextBillDate%>></TD>
</TR>
I am using the session(loggedin) to see if a user is logged into that section of the site. The problem is that it is timing out on them, is there a way to define the length of the session (I think it times out at 10 or 20 mins currently), but to extend it to an hour or so. Any thoughts.
View Replies View RelatedI've developed a shopping cart app in ASP, to secure transaction by SSL, it 've put only the checkout page in SSL but all other pages i.e. product, cart etc remains on non SSL connection. How can I track user session from non SSL to SSL checkout page as the SessionID changes when shifting to SSL (to prevent session stealing/ hijacking). I'm tracking user session by putting SessionID in cart DB with products. Given below the preview of cart table ....
View Replies View RelatedI'm trying to only show part of my page based on a variable, I have two
Session Variables -
Session("EMPLOYEEMAXUSERS")
Session("EMPLOYERUSERS")
Now what I'm trying to do is -
ShowIf Session("EMPLOYERUSERS") < Session("EMPLOYERMAXUSERS")
I can't get this to work though
I have a page that a user is logged in via a session that displays a thumbnail of a picture. The picture is a link to the full size image. When there is no target="_blank" in the code, it works fine.... except it needs to open in a new window. When I add target="_blank" the new open browser window seems to act as a whole new session (even though no session.abandon or anything had been called).
I need it to keep the session, but in a new window.
What do I need to do, and why is it doing this?
Is a JavaScript window opener the (only) way to go?
is it okay to store password in session variable??any risk with this
View Replies View RelatedI'm building a Shopping Cart, but then right away i've stumbled on a little problem. I need to Hold things a costomer is buying in a session. However I can't declare Session as an Aray.
Session("item_id")(2) doesn't work- right? So i was thinking maybe I can create an aray, and then somehow hold it's reference in a session("item_id"). I will apreciate if someone can show me how to save aray into the session, and how to extract it from there later on.
I'm setting up 2 websites for a friend of mine, en I'm have problems with
one of the sites.The situation: I have 2 different domains (both in the .NL domain). Both
domains provides the possibility for users to log in. The loginscript and
the databases are hosted at server 1. The site at server 2 contains a link
to the loginpage at server 1. That works well... so far.
The problem is that when I log in at server 2, he doesn't accept it. I found
out that the Session variable I use isn't recognised. I use
Session("protected") to keep track of the users who are logged in. When
there credentials are right according to the database,
Session("protected")=True and the loginpage gives a redirection to
partner.asp by doing Response.Redirect "partner.asp". Trying to log in from
server 1 works fine, trying to log in from server 2 doesn't.
My questions therefore are:
1. Is the Session variable rememberd by server 2 (although server 1 contains
the loginpage en gives a redirection to a page on server 1)
2. What can I do to correct this problem?
Your answers are appreciated, and sorry for the possible worse language in
this message (English is not my native language ;))
I want to be able to track what the user is inserting/updating into the database. I have this code that is used for login: Code:
View Replies View RelatedOnce a user logs in, I created a session.After he logs out and if he clicks the back he should not see the previous pages and only should be redirected to the main.asp
View Replies View Related