发表新帖
发表新帖

Redirect to login page after session timeout

前端 未结
关注
4 2089
南旧
南旧 2020-12-09 22:44

I have found some similar questions but none gave me what I really need.

Here is the thing, I have added this to my web.config to handle user session ex

相关标签:
4条回答
  • 遇见更好的自我
    2020-12-09 23:17 
    protected void Page_Init(object sender, EventArgs e)
{
    if (Context.Session != null)
    {
        if (Session.IsNewSession)
        {
            HttpCookie newSessionIdCookie = Request.Cookies["ASP.NET_SessionId"];
            if (newSessionIdCookie != null)
            {
                string newSessionIdCookieValue = newSessionIdCookie.Value;
                if (newSessionIdCookieValue != string.Empty)
                {
                    // This means Session was timed Out and New Session was started
                    Response.Redirect("Login.aspx");
                }
            }
        }
    }
}
    0 讨论(0)
  • 无人及你
    2020-12-09 23:27

    Check for expired sessions on every Page_Init event. If there are too many pages to do this check, this is what I usually do:

    • I create a base class and inherit from System.Web.UI.Page.
    • Write my redirect logic in the Page_Init event of my base class.
    • Have the rest of my pages inherit from this base class.

    Good luck.

    0 讨论(0)
  • 孤城傲影
    2020-12-09 23:30

    Session_End is a server-side event, meaning it is triggered on the web server and has nothing to do with a request by the client. This is why the Request is unavailable.

    You have two choices in this matter:

    1. On each client request, check if a specific Session variable is set. If it is not, it means the previous Session has expired and the new Session must be populated. (I am assuming this is why you want to check for Session expiration)

    2. Have a javascript call on the client that periodically goes back to the server to check if the Session is still valid. If the Session has expired, you can redirect the user to the login page.

    samples of different redirect methods

    location.href = "login.aspx";
// or you can use 
location.assign("login.aspx");
//for redirecting without storing in history
location.replace("login.aspx")

    Don't forget to add ?ReturnUrl=[current url] to the login redirect path.

    HTH

    0 讨论(0)
  • 小蘑菇
    2020-12-09 23:44

    Description

    You can use the Page_Initevent in the global.asax

    Sample

    Protected Sub Page_Init(sender As Object, e As EventArgs)
 If Context.Session IsNot Nothing Then
  If Session.IsNewSession Then
   Dim newSessionIdCookie As HttpCookie = Request.Cookies("ASP.NET_SessionId")
   If newSessionIdCookie IsNot Nothing Then
    Dim newSessionIdCookieValue As String = newSessionIdCookie.Value
    If newSessionIdCookieValue <> String.Empty Then
     ' This means Session was timed Out and New Session was started
     Response.Redirect("Login.aspx")
    End If
   End If
  End If
 End If
End Sub

    More Information

    • Detecting Session Timeout And Redirect To Login Page In ASP.NET
    0 讨论(0)
 看不清?
提交回复
热议问题