I have learned asp just for a short time and now I have a problem.If I open a new window from a parent window, then open another new window again from the parent window, can the session of the 1st child window be abandoned when the 2nd child window is opened?
I use ASP pages With RDC to post Crystal Reports on a Web. Everything works fine, until I realized that I cannot use "Back" button. It destroys all session variable I need in my application. CR require include Clinup.asp page with this code:
'The JavaScript code is used to close the newly opened browser window once the page has run Session.Abandon Response.End
'These last two lines terminate that user's active session and flushes html to the browser. So session.abandon is my problem! What should I do?
I am passing form data to a distant server that is out of my control. The destination server (posting to) rejects all postings beyond ONE from the same session ID. I am trying to get around this...my postings are valid but I can't get the programmers on the other end to accomodate me.
I am doing the following:
Data is posted, from elsewhere, to me in an ASP page. I process the data then redirect to a 2nd page (on my server) w/ a QryStr The 2nd page populates a dummy form w/the QryStr data and OnLoad submits.
I have a Session.Abandon command JUST BEFORE the redirect to MY 2nd page (the one that populates the dummy form and submits itself)
My subsequent postings beyond the first are still being rejected due to "Same Session ID"
I want to abandon session everytime when user come to login page. The problem is that if 1) user comes from login page to welcome page and session is created 2) but if he clicks the "back" button session is not abandoned. I have
Session.Abandon
on login page, but it does not work untill page refreshed. Is there any way to refresh page if user comes back to it using button "back" of browser? Or may be the right way is very different to what i try to do?
I am developing a membership based website for car auctions. It uses the session object on many pages, most importantly on user personal pages. When the user session ends, i.e., on logout, I use the Session.Abandon to destroy a session object associated with a particular user, and also turn a boolean variable session("Valid_User")=False (which was turned ON at the time of successful login and used on user personal pages for authentication).
But, when I go BACK and browse the previous pages, they still appear with the specific user's data, who logged in last time on the same browser. Why is it so? When I refresh the pages, only then the session variables' values are erased.
Secondly, my site doesn't allow me to login as a different user, even after logout, because I have put a check on the login page so that it doesn't allow a user to login again during his current session, which again means that the logout process doesn't destroy his session.
well in session we got session.abandon and all the bad sessions gone... i need to delete cookies from users side, there is option for this in asp dot net but in classic asp how we can do it?
I have a site that I'm trying to migrate to ASP.NET from ASP, and the foremost stumbling block I'm hitting is session state between the ASP and ASP.NET applications. In order to access this information, I'm doing a HttpWebRequest from the ASP.NET side into an .asp page, passing the session name on the get in order to request it from the ASP side and write it back to the response stream, giving ASP.NET access to it. Of course I change sessions each time I make the call from the ASP.NET side.
Soooooo, I'm thinking to myself, "Self, shouldn't you be able to fake out the server by getting the session cookie from the initial usage of the asp, pass that data to the ASP.NET, and use that to send a request back the ASP side under the appropriate session?"
From a real high level, I enter the site via a .asp page. This page in turn calls .aspx page from within a frame ......
I want to create an administration page which lists all the current users who are on the site at the moment.
I know coldfusion has this feature built in using the SessionTracker class... does ASP have something similar? If not... is there any way I can just iterate through all the session files on the server...?
I have a site developed using ASP, but each page I enter has a different session id when accessing the site using the domain name of the site. When accessing the site from my network and using the internal IP address, it is OK. Any ideas?
I wrote a website, which uses the session to store and track some vars.
Now I am gonna to covert it to desktop application by Activesite compiler 5, however, it doesnot support session , cookie , application() . SO ,I have no idea to find something can instead of session.
My orignal processing: Session -> modify Session var -> store to Database.
There is a problem about ASP session ID. ASP session is implemented by storing session id in a session cookie, but I read this cookie in ISAPI Filter, get a string as following: ASPSESSIONIDQADCQQTS = IAOFCBBCGDGMDGCNJIKPNBAN
But the real session ID is 554851848. (Real sessionID is sessionID property the ASP session object)
Problem is what is relation between them? And how to get real session ID from cookie session ID.
I did a session("adminlogin")=1, if I post it to the same page, it returns true. But if I response.redirect to another page. This value doesn't exist anymore. This is on the actual server where all the ms security is updated.
The same script worked okay on my test server (the security patch not patched yet.)
Has anyone encountered this? How do you overcome it?
I tried searching the net it says the problem lies with a ms security patch. How I wish I can unintall that patch.
I have asp and asp.net web application. When I run it in IE7 in first tab it starts a new session. When I open second tab and browse to the same site the new session is not started (infact I need to have new session there).
Whereas, 2 IE instances generate 2 unique sessions. Only issue is with IE tabs. Firefox also has similar things but lets not talk about firefox here. I am more concerned with IE only.
In my login script I set session("User") = rs("User") the session timeout is set to 20 min
Do I need to setup some kind of update session variable on each page so that the timeout does run out or does iis update the variable aslong as I'm browsing the website ?
And another thing, <% application("something") %> works fine on my test server but once I implement it onto the main webserver I dont get any text out, is there some kind of switch that enables this function ?
My buttons default as you can see in the code. But I now want to take what is already choosen in database and chose apropriate button. Can I use a session to choose a radio button? Code:
I am using the session(loggedin) to see if a user is logged into that section of the site. The problem is that it is timing out on them, is there a way to define the length of the session (I think it times out at 10 or 20 mins currently), but to extend it to an hour or so. Any thoughts.
I've developed a shopping cart app in ASP, to secure transaction by SSL, it 've put only the checkout page in SSL but all other pages i.e. product, cart etc remains on non SSL connection. How can I track user session from non SSL to SSL checkout page as the SessionID changes when shifting to SSL (to prevent session stealing/ hijacking). I'm tracking user session by putting SessionID in cart DB with products. Given below the preview of cart table ....
I have a page that a user is logged in via a session that displays a thumbnail of a picture. The picture is a link to the full size image. When there is no target="_blank" in the code, it works fine.... except it needs to open in a new window. When I add target="_blank" the new open browser window seems to act as a whole new session (even though no session.abandon or anything had been called). I need it to keep the session, but in a new window. What do I need to do, and why is it doing this? Is a JavaScript window opener the (only) way to go?
I'm building a Shopping Cart, but then right away i've stumbled on a little problem. I need to Hold things a costomer is buying in a session. However I can't declare Session as an Aray.
Session("item_id")(2) doesn't work- right? So i was thinking maybe I can create an aray, and then somehow hold it's reference in a session("item_id"). I will apreciate if someone can show me how to save aray into the session, and how to extract it from there later on.
I'm setting up 2 websites for a friend of mine, en I'm have problems with one of the sites.The situation: I have 2 different domains (both in the .NL domain). Both domains provides the possibility for users to log in. The loginscript and the databases are hosted at server 1. The site at server 2 contains a link to the loginpage at server 1. That works well... so far. The problem is that when I log in at server 2, he doesn't accept it. I found out that the Session variable I use isn't recognised. I use Session("protected") to keep track of the users who are logged in. When there credentials are right according to the database, Session("protected")=True and the loginpage gives a redirection to partner.asp by doing Response.Redirect "partner.asp". Trying to log in from server 1 works fine, trying to log in from server 2 doesn't. My questions therefore are: 1. Is the Session variable rememberd by server 2 (although server 1 contains the loginpage en gives a redirection to a page on server 1) 2. What can I do to correct this problem? Your answers are appreciated, and sorry for the possible worse language in this message (English is not my native language ;))
Once a user logs in, I created a session.After he logs out and if he clicks the back he should not see the previous pages and only should be redirected to the main.asp
I am trying to create a login for my webpage so that certain sections are protected. Now, I have the basic login script up and working.the problem comes in recognizing when a user has logged on and when they have not.How would I approach this?
I have read some documentation and it seems that I have to create an application and start my session for each user in there once they successfully log on, but I can't find out HOW to do this.