Hi, i need some help on my asp project the user login, i use session to keep ur pwd, and the user name is passing with the url. so everytime i'll check the session("pwd") ,if empty,then back to login page. so can protect that user save the url and enter in without key in password. but i feel it's quite trouble. the session will be clear after some duration.is there anyway to refresh it everytime? or please teach me the best way for asp to doing the user login tracking. thanks a lot.
Cookies & Session I usually used Session to keep the status.If visitor don't have any activity in 20 minutes ,then the session will empty by IIS. Cookies is saved in visitor's computer. It also will expire if visitor don't have any activity in some time. The expire time of session & cookies can be config in your asp script.
don't use session, waste memory, lower server performance and limited your code in one server, you cannot have server load balance on session use cookie instead. save a key in cookie based on user(IP), username and saved in database as well, every time do a recalculation for authorization
Load balancing systems support sticky-IP based sessions. Also, I agree that session-based state management is not ideal. If you MUST use the session, keep it lite and use a session wrapper class to limit the number of items.
Cookie log in has more possiblilities as you can do things like allowing the user to automatically log in, however, I always use sessions and have had no real issues with it.
sorry for not online for long time. cause suddenly switch to another project. thanks for all of u's reply.i'm working on ASP. now i used session for it. cause it's faster way for me right now.it's for company information tracking site. customer don't want remember me function. so think cookies is not suitable. .any way. thanks for all of you...
Cookie log in has more possiblilities as you can do things like allowing the user to automatically log in, however, I always use sessions and have had no real issues with it.