Forms Authentication question

  • Thread starter Thread starter Stefano Mostarda
  • Start date Start date
S

Stefano Mostarda

Hi buddies,

I have a question.

I want to use the forms authentication in my web app.

My user login. The cookie is stored in the client machine and some
important information is stored in session variables.

What will happen if the user closes the browser and reopen to relog in
the application? I mean, the cookie is not expired yet so the login is
automatic, but, I have no session informations consequently my app
should fail (I assume).

Am I missing something or I have to create a workaround to bypass this
situation?

Thanks in advance

Stefano Mostarda
Rome Italy
 
What you can do is, in the session_end you can delete formauthentication
cookie by using signout method of formsauthentication.
 
Don't persist the cookie.

FormsAuthentication.SetAuthCookie(userId.ToString(), false)

m.
 
Mohammad A. Samara said:
Don't persist the cookie.

FormsAuthentication.SetAuthCookie(userId.ToString(), false)
Click to expand...

The other thing you can do is to put in the cookie enough information to
reconstruct your Session data.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Forms authentcation question 1
Forms Authentication Redirecting to Login 1
Authentication Cookie not in Request.Cookies 1
Application or cache 2
cookie timeout 3
Forms authentication problems 2
ASP.NET Forms Authentication Cookie 3
Forms Authenication Cookie Not Expiring Correctly 3

Back
Top