appending a unique id to the url

G

Guest

HI,

I have a question regarding the sessions. When I go to home page in my
website and if I look at the url in the address bar, it is saying something
like
https://www.mywebsite.com/(rn5qci45z5a4vhnsuierdeei)/home.aspx

But I am not knowing how it appended the id (rn5qci45z5a4vhnsuierdeei). Is
it done in IIS? I have looked at the code in home.aspx but I didn't find any
code that does that. Please let me know if you have any ideas?

Thanks.
sridhar.
 
G

Guest

Thank you. Someone set that option to true. When I looked at the
documentation, it is mentioned that the default value is false. Is there a
reason that it should be true? Which option would be secure? Please let me
know.

Thanks,
sridhar.

Ken Cox said:
I suspect that's being added by ASP.NET to implement cookieless session
state.

Perhaps you can check the web.config file to see if that's the case? Look
for cookieless="true"


http://msdn.microsoft.com/library/d...us/cpgenref/html/gngrfsessionstatesection.asp

Ken
Microsoft MVP [ASP.NET]


Sridhar said:
HI,

I have a question regarding the sessions. When I go to home page in my
website and if I look at the url in the address bar, it is saying
something
like
https://www.mywebsite.com/(rn5qci45z5a4vhnsuierdeei)/home.aspx

But I am not knowing how it appended the id (rn5qci45z5a4vhnsuierdeei). Is
it done in IIS? I have looked at the code in home.aspx but I didn't find
any
code that does that. Please let me know if you have any ideas?

Thanks.
sridhar.
Click to expand...
Click to expand...
 
G

Guest

Howdy Sridhar,

Yes, there is. As name indicates, cookieless session is invented for
applications that require session state and must not use cookie as SessionID
storage (there are many reason for that - the obvious one is that client
browser simply does not support cookies as some PDAs don't. Another major
reason is security - many users may block cookies from being accepted by
browser).

Hope this helps
--
Milosz Skalecki
MCP, MCAD


Sridhar said:
Thank you. Someone set that option to true. When I looked at the
documentation, it is mentioned that the default value is false. Is there a
reason that it should be true? Which option would be secure? Please let me
know.

Thanks,
sridhar.

Ken Cox said:
I suspect that's being added by ASP.NET to implement cookieless session
state.

Perhaps you can check the web.config file to see if that's the case? Look
for cookieless="true"


http://msdn.microsoft.com/library/d...us/cpgenref/html/gngrfsessionstatesection.asp

Ken
Microsoft MVP [ASP.NET]


Sridhar said:
HI,

I have a question regarding the sessions. When I go to home page in my
website and if I look at the url in the address bar, it is saying
something
like
https://www.mywebsite.com/(rn5qci45z5a4vhnsuierdeei)/home.aspx

But I am not knowing how it appended the id (rn5qci45z5a4vhnsuierdeei). Is
it done in IIS? I have looked at the code in home.aspx but I didn't find
any
code that does that. Please let me know if you have any ideas?

Thanks.
sridhar.
Click to expand...
Click to expand...
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Post link shows ID instead of title in the URL 1
Post link shows ID instead of title on the URL 2
Changing .html in URL 3
I am trying to detect Which image id="" was clicked ? 22
Find an object by id in a JavaScript object array 3
Making a post URL one-time-only or "single use URL" 1
Yow to Generate Unique Control ID? 2
Problem appending id to hyperlink in gridview 0

Members online

Total: 21 (members: 2, guests: 19)
Robots: 365

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,020
Latest member
GenesisGai

Latest Threads

Top