Application_EndRequest code move

S

SM

Hi,

We had the following code in our global.asax.cs file when our code was in
..net 1.1
Please note that our production environment uses SSL ad windows
authentication based single sign on.

protected void Session_Start(Object sender, EventArgs e)
{
if (Request.IsSecureConnection == true)
Response.Cookies["ASP.NET_SessionID"].Secure = true;

}

When we upgraded our system to .net 2.0 , all users started getting session
loss in the first attempt to access the site.

Microsoft support engineer suggested to move the above code to application
end request event. Although this move resolved the above issue , he was not
able to provide a satisfactory explanation on why this code has to be moved
from session start event.

Microsoft suggested code move :
protected void Application_EndRequest(Object sender, EventArgs e)
{
//Code originally from Session_Start

if (Request.IsSecureConnection == true)
Response.Cookies["ASP.NET_SessionID"].Secure = true;
}

I would like to know if anyone could provide an explanation for this move
from their own experience or knowledge.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Session_Start issue 0
Application_EndRequest 3
Java script error when URL's modified in Application_EndRequest and Application_BeginRequest 1
whats happenig inside the global.asax 0
How to retrive payment result value after secure paytabs payment done in PayTabs payment gateway in asp.net 0
Loop through record in datareader in aspx for textbox other item 1
How to change the path of the session cookie ASP.NET_SessionId 0
Functioning website now fails 0

Members online

Total: 36 (members: 1, guests: 35)
Robots: 458

Forum statistics

Threads
473,769
Messages
2,569,580
Members
45,054
Latest member
TrimKetoBoost

Latest Threads

Top