Handle end session for win authentication

G

Guest

Hi
When we use forms authentication I set the time and a url for login page
after configured amount of time, via web.config.
But, what is the best practice to do it after configurable amount of time,
or after session end when it is a windows authentication
 
B

Brock Allen

First thing to understand is that the forms authentication mechanism uses
a different cookie than session state. So those have two independent timeouts.
So regardless if you're using Forms or Windows authentication you have the
same problem of the session potentially timing out prior to the user logging
out (by losing the cookie or closing the browser). So, the way you code this
is you code defensively. Always check to see if the data you put into Session
is there and if it's not either refetch it (if you're using Session like
a Cache) or if it's truly volatile data (like a Shopping Cart) then you need
to deal with that contingency.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Simple database front-end for simple small business 7
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Custom Authentication 1
proper way to logout and end a session 1
web.config and Anonymous Authentication problems ??? 0
authentication 1
Forms Authentication Redirecting to Login 1
Forms Authentication and session timeout 0

Members online

No members online now.
Total: 43 (members: 0, guests: 43)
Robots: 612

Forum statistics

Threads
473,769
Messages
2,569,578
Members
45,052
Latest member
LucyCarper

Latest Threads

Top