Re: Identify User After Session Ends

From: Alphonse Giambrone (NOSPAMa-giam_at_example.invalid)
Date: 10/14/04 

Date: Thu, 14 Oct 2004 07:58:10 -0400

Steven,

Thanks for the idea. I was not aware of the Expire event handler for cache
objects, but it sounds like it would work.
Do you have an example of using it?
Where is it accessed from, the global.asax? 

-- 
Alphonse Giambrone
Email: a-giam at customdatasolutions dot us
"Steven Cheng[MSFT]" <v-schang@online.microsoft.com> wrote in message
news:cgohNAasEHA.3820@cpmsftngxa10.phx.gbl...
> Hi Alphonse,
>
> From your description, you're building an asp.net web application in which
> the users can edit some datas which stored in session and when the user's
> session is timeout, we need to send a mail to him with his editing datas.
> However, you found its unable to retrieve the sessionid in the Session_end
> event , so you're wondering some means to get that, yes?
>
> As for problem, I think maybe cookie is a possible approach, since the
> cookies are  stored on the client mahcine and still accessable in
> Session_End, you can try  generate a identical key when the user login and
> store in cookie to idenitfy him. And in Session_End , use this cookie
value
> to get the data for the user.
>
> In addition, the Session_End event seems only work for InProcess Model
> session, so if you'll care this problem, there is also another approach
> that use the Application Cache to store the user's data. Just define a
> certain cache object for storing each user's data and we can specify a
> Expire Time  and add EXpire event handler for cache object in asp.net.
>
> Just some of my suggestions. Hope helps.
>
>
> Regards,
>
> Steven Cheng
> Microsoft Online Support
>
> Get Secure! www.microsoft.com/security
> (This posting is provided "AS IS", with no warranties, and confers no
> rights.)
>

Relevant Pages

  • Re: Role Providers Cache
    ... do our own cache using the cache management API. ... farm environment with out of process session state. ... Auth Manager Role Provider or use the SQL Role provider (moving the roles ... So my main concern was on the cache feature and the cookie was worried we ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Role Providers Cache
    ... If you have sticky session support, then you can use in process session ... do our own cache using the cache management API. ... Auth Manager Role Provider or use the SQL Role provider (moving the ... So my main concern was on the cache feature and the cookie was worried ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Authorization question, w/ "Windows" authentication mode
    ... session is not available in Post/AuthenticateRequest - i would use the cache or a cookie ... if cookie i would use the userData field of the FormsAuth ticket - this gives you encryption and integrity protection + renewal for free ... it appears the Session object doesnt yet exist "Session_Start" is ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Session state is not available in this context
    ... The reason that I can't use cache is I need role information for any single ... If I want to use cache then the index could be session id and also I have to ... > Another option with the cookie would be to encrypt it so the user cannot ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Identify User After Session Ends
    ... session is timeout, we need to send a mail to him with his editing datas. ... As for problem, I think maybe cookie is a possible approach, since the ... Expire Time and add EXpire event handler for cache object in asp.net. ...
    (microsoft.public.dotnet.framework.aspnet)