session-state

问题 A security check of my website showed that sessions (i.e. login) never expire. I've tested myself and I find the same - I opened up the site on localhost this morning and I'm still signed in from yesterday. I always assumed it would expire after 20 minutes like it would in .NET Framework apps. I'm using the ASP.NET Core Identity scaffolding with minimal changes other than implementing two factor authentication. In my Startup.cs I have the following code to add session support: services

问题 A security check of my website showed that sessions (i.e. login) never expire. I've tested myself and I find the same - I opened up the site on localhost this morning and I'm still signed in from yesterday. I always assumed it would expire after 20 minutes like it would in .NET Framework apps. I'm using the ASP.NET Core Identity scaffolding with minimal changes other than implementing two factor authentication. In my Startup.cs I have the following code to add session support: services

问题 A security check of my website showed that sessions (i.e. login) never expire. I've tested myself and I find the same - I opened up the site on localhost this morning and I'm still signed in from yesterday. I always assumed it would expire after 20 minutes like it would in .NET Framework apps. I'm using the ASP.NET Core Identity scaffolding with minimal changes other than implementing two factor authentication. In my Startup.cs I have the following code to add session support: services

问题 The past two times we have rebooted our sql server, our website has gone down. The reason appears to be because the tempdb is getting recreated and the ASPState user is losing permission to read/write to the tempdb (it is an ASP site and session data is stored in the sql server) This was not a problem until about two weeks ago. Does anyone know how I can prevent the sql server from resetting tempdb permissions after a reboot? Or why this only started happening recently? We are using MS SQL

问题 I have to redirect to home page after session timeout in mvc 5 application. I am using following code : public class SessionExpireAttribute : ActionFilterAttribute { public override void OnActionExecuting(ActionExecutingContext filterContext) { var currentEnvironment = EnvironmentUtility.GetSession().Get<Environment>(); if (currentEnvironment == null) { filterContext.Result = new RedirectResult("~/Home/Index"); } base.OnActionExecuting(filterContext); } } In the controller, I have below code

问题 We have a .net asmx web service that gets called from javascript (using ASP.Net AJAX), and requires access to Session. [WebMethod(true)] public string DoSomethingOnTheServer() { } We're running into the problem of session being locked on a read/write request. Is there any way to mark a web service method as requiring read-only access to Session? Thanks! 回答1: This is a really old thread, but i stumbled on it in my search for an answer to the same question. I found the answer else where, and

问题 I have a page which requests multiple requests concurrently. So those requests are in the very same session. For accessing the session I use everywhere IHttpContextAccessor . My problem is that regardless of the timing, some request does not see other requests already set session state, instead sees some previous state. (again in timing, the set state operation happened already, still) As far as I know each requests has its own copy of the state, which is written back... (well "when"?) to the

问题 I have a page which requests multiple requests concurrently. So those requests are in the very same session. For accessing the session I use everywhere IHttpContextAccessor . My problem is that regardless of the timing, some request does not see other requests already set session state, instead sees some previous state. (again in timing, the set state operation happened already, still) As far as I know each requests has its own copy of the state, which is written back... (well "when"?) to the

问题 My app has an expensive service method, results of which must be 1) checked for errors and 2) presented to a Java applet via a URL (i.e. as opposed to a JavaScript variable). The method result is a string, and the applet is only capable of loading data from a file or URL. I tried to deal with the problem using a session variable: def action1 = { def input = params['input'] def result = expensiveServiceMethod( input ) def failed = result == null session['result'] = result render( view:'view1',

问题 Why Session objects are not removed after Timeout period? I am using Asp.Net 4.0 and Session state is configured as shown below. <sessionState mode="SQLServer" cookieless="false" timeout="5" allowCustomSqlDatabase="true" sqlConnectionString="data source=.\SqlExpress;initial catalog=App_SessionState;user id=sa;password=xxxxxxxx"/> If I have not activity in browser for about 10 mins, shouldn't the Session object be removed. But after 10 mins I can still access the Session variable. Am I missing