Reputation: 77
how to maintain session.sessionId in asp.net without displaying sessionId in url
I am working on a asp.net web project in which if I use
in web config
then the encrypted sessionId is visible in URL but if I change cookieless to false then encrypted sessionID get removed from url but I receive a new session.sessionId on each request
Please help so that no encrypted session.sessionID is visible in url and also there should be SINGLE session.sessionId on every request.
Upvotes: 0
Views: 340
Answers (1)
Reputation: 24125
If you are using cookies based session management ASP.NET is using some optimalization which results in creating new session every time until there are some actual session data to store. To avoid this you can put a dummy value into session in Session_Start event available through Global.asax:
protected void Session_Start(object sender, EventArgs e)
{
Session["DUMMY_KEY"] = "DUMMY_VALUE";
}
This way the session id will remain the same until the session time out occurs.
Upvotes: 1
Related Questions
- Removing ASP.NET_SessionId from an ASP.NET application
- Prevent session id from appearing in browser address bar in asp.net
- How to hide the ASP.NET_SessionID cookie string in asp.net webform?
- How can I remove the ASP.NET Session ID from my URL?
- ASP.NET SessionID In URL
- How to display session id in ASP page (without vulnerablity)
- Remove Session from URL String
- Keep sessionId even when not using session to store data?
- Maintain the SessionID for Entire Application in ASP.NET
- Lose of session ID in ASP.NET