Hello all! I am in a delima here. I have a membersonly section that our users log into. I am passing a tokenkey to verify the session and to prevent others from hacking, sharing, ect info. I am setting the tokenkey to a session.item("sesTokenKey") in the codebehind. Now we created a page in classic asp, which we need to request("Tokenkey"), which is working fine by passing the arguements via the link, but I need to match it by verifying the session value, from the asp.net main page. In classic asp its session.content(""). Is there a way around this? I hope I made sense. Thanks, Robert
hi, as they'er effectively running in two different application spaces I don't believe the session can be shared. Try saving it in the database and passing the "encrypted) key in the querystring
You can't directly share the session scope between classic and .net - but you can use some hidden trickery. you can either store it in a hidden input, then on your classic file just request.form("hidden"). Or you could save it to a DB Record, and just pass the ID of the record you just created via QuerySTring. Or you can save a temp file - and have asp read the file's token data. Or you could both be hitting the same COM object which would/could act as a session provider. Lots of options
Thanks! I used the asp:hiddenfield control and placed all my values in them and then on the postback I request.form, which leads me to my next problem, which I am currently giong to post.
Cookies wouldn't really be a good option. Posting a form wouldn't be that great either as asp.net has a different notion of posts than classic asp. There have been a few listed here, that I would go with. 1) store session data in a DB and pass the primary key of the record via querystring to the next application 2) Pass the values in a querystring. Good luck...
Ya, after countless debate and testing (security wise and performance wise) passing them as values and then collecting and settings is the best way. Thanks everyone!