Reputation: 337
How to get cookieless session to work with Windows Azure website
I'm working on an ASP.Net MVC website that is deployed to a Windows Azure Website. The site uses cookieless session with the RedisSessionStateStore provider. The site works fine in a local dev environment, but when deployed to Azure, any request to the site causes an infinite redirect loop. Each loop tries to generate a new session Id in the url.
I've tried the following, but have not got any of these to work.
- Tried disabling Arr Session Affinity. This was suggested on another forum, but it does not work. I've tried using web.config and c# to set the Arr-Disable-Session-Affinity header to true, but the ArrCookie remains.
- Tried InProc session
- Tried setting regenerateExpiredSessionId to false
Please let me know if it is possible to get cookieless session working when deployed to Windows Azure website. If so, how? Also, is there any reason why none of my attempts to disable Arr Affinity cookie worked?
Upvotes: 0
Views: 810
Answers (1)
Reputation: 12174
See this SO question and this forum post. Bottomline - cookieless sessions are not supported in MVC. They may appear to be working locally - but if they are, then there will a Session ID in every URL (read here - 2005 MSDN article)
Upvotes: 1
Related Questions
- Session Cookie (Authentication Related) Does Not Contain The "HTTPOnly" Attribute
- SameSite None cookie attribute not set in Azure Web App
- Disable Cookieless Session .Net MVC 5
- How to add to Azure Session Cookies HttpOnly and Secure attributes
- Session state are different for same domain with/without www prefix
- Session and Cookies not working on Windows Azure Cloud environment
- Create a session mechanism without cookies
- Cookieless sessions in asp.net
- User authorization on Azure
- .ASPXANONYMOUS cookie getting overwritten on every fresh session