V
VB Programmer
I've read that you can save a session state variable created by an ASP page
into a db so that the value of the session state variable can be read/used
by an ASP.NET webform.
Question: Let's say the session variable is called "UserIsAdmin" and the
ASP page is the login page. When the person logs in as 'admin' it stores
the session variable as "True" in a db. How does the ASP.NET page that is
served up know whether the page requestor is the same user or a different
user? If "UserIsAdmin" is set to True in the db, won't anyone be able to
get in as 'admin' because this db value has been set? Am I missing
something?
into a db so that the value of the session state variable can be read/used
by an ASP.NET webform.
Question: Let's say the session variable is called "UserIsAdmin" and the
ASP page is the login page. When the person logs in as 'admin' it stores
the session variable as "True" in a db. How does the ASP.NET page that is
served up know whether the page requestor is the same user or a different
user? If "UserIsAdmin" is set to True in the db, won't anyone be able to
get in as 'admin' because this db value has been set? Am I missing
something?