Re: Session Variables - why aren't novice developers warned?

Damien -

I fully agree that this is appropriate behavior in IE. I just think it
should be mentioned somewhere where it will be seen. How did you learn of
this?

My point is that this is such a potentially serious problem, and so likely
to occur, that I don't understand why it is not documented somewhere in MSDN
or the VS documentation. I can only find reference to it in forums where
someone has found out the hard way.

No basic explanation of the use of session variables that I can find
counsels the developer about the risk of a user compromising the application
completely by using Ctrl-N.

Thanks!
Bill

"Damien" <Damien_The_Unbeliever@xxxxxxxxxxx> wrote in message
news:1161274616.108950.327570@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
BillE wrote:
Possibly, Mark, but I think that even thorough testers might overlook the
possibility of clicking File-New-Window in Internet Explorer if they
weren't
previously aware that it could cause problems. After all, they are
testing
the application, not the behavior of Internet Explorer!

Which returns to the main point - how is a developer / tester to become
aware of this pitfall? The only way I can find reference to the problem
it
is by specifically searching on something which implies prior knowledge
of
the problem (like "Internet Explorer File New Window").


You see it as a pitfall - others may see it as a boon. For instance, we
want to provide a link to a dynamically generated booklet for the
client which will open in a new window. In that case, we definitely
*do* want the same session to be shared between the windows, otherwise
we have to go and invent something new for ourselves, or have to expose
potentially sensitive information in e.g. the query string, in order to
find the right data.

Damien



.

Relevant Pages

  • Re: Session Variables - why arent novice developers warned?
    ... possibility of clicking File-New-Window in Internet Explorer if they weren't ... not the behavior of Internet Explorer! ... You see it as a pitfall - others may see it as a boon. ... client which will open in a new window. ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Search Assistant Not Working Right - More curious...
    ... button features" posted on March 22 at 2:15 pm on this forum? ... SpyBot S&D is well known and I doubt presents any problem, ... The Search Companion window was there as it should be. ... On the Tools menu in Internet Explorer, ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Cant Print from IE except from root window...
    ... I open internet explorer and go to print......works ... Newsgroups: microsoft.public.windowsxp.general ... Can't Print from an IE window thats not the root window ... original | Report this message | Find messages by this author ...
    (microsoft.public.windowsxp.general)
  • Re: Error Reporting "stops responding" along with IE6 - Ramesh
    ... When you click the Internet Explorer icon, window may flash a second and ... malware Browser Helper Object which causes Internet Explorer process to ... to the Error Reporting Window's findings? ... On the General tab, click Selective Startup, and then click to clear ...
    (microsoft.public.windowsxp.newusers)
  • Re: ie will not run yet affects all other browser perfomance
    ... Windows - Internet Explorer since 2003 ... > close the command dialog window, we will need to use this window again ... > the latest version of the Google Toolbar from http://toolbar.google.com. ... > the Microsoft Internet Explorer and Mozilla Firefox browsers appear below: ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
Loading