Session Madness !!!

G

Goofy

I have been trying to implement a 'Whos On' table in my sql backend so that
I can see at a glance who has active sessions ( Potentially ) on my asp.net
application.

I am using windows integrated security. On Session Start, I create an entry
for the user in my Whos on and log the session start for that users in the
events database table. So I see their entry come into whos on and see the
event "Session started for user XXX".

So far so good. . . . .

If the user closes the browser, then comes back, they get a new session, so
they cannot add a new entry for themselves and a violation of primary key
occurs. Allthough they dont see this and continue normally.

Sometime after this the session for the first one ends, this then deletes
the entry for this user, and when the last session expires, there is nothing
to delete.

Does anyone have an idea how to resolve this ???
 
G

Goofy

Yes, I thought about that but the problem is the session is different; I
guess the thing to do is to delete any entry for the user where the session
does not equal the new session.

Its a bit messy as I would like to force the old session to expire, but im
not sure if I can do that .
 
G

Goofy

Sorry, you know what I misread you, yes update with the new session would be
the right way to do it and also, when the session ends one could delete in
the same way making sure that the session and user matched.

Thanks for your input, sometimes its just helpful to talk a problem through
 
S

sloan

I'd say youre primary key is

SessionID and UserID

So you can either add entries for this primary key. And thus a user with 2
different session id's won't crack the database constaint.



Or you can use the "if exists" logic, and then add or update as necessary.


Here's the code for a unique constraint on 2 columns.

CREATE TABLE dbo.MyTable (

entryid int IDENTITY (1,1) PRIMARY KEY NONCLUSTERED, --self explanatory

SessionID varchar(40) ,

UserID int ,



CONSTRAINT CONSTR_MYTABLE_KEY1 UNIQUE NONCLUSTERED ( SessionID, UserID )

)

GO
 
R

Robbe Morris [C# MVP]

G

Goofy

Thanks for that it made an interesting read.

Robbe Morris said:
You could try an approach like this:

http://www.eggheadcafe.com/articles/20030416.asp

--
Robbe Morris - 2004-2006 Microsoft MVP C#
I've mapped the database to .NET class properties and methods to
implement an multi-layered object oriented environment for your
data access layer. Thus, you should rarely ever have to type the words
SqlCommand, SqlDataAdapter, or SqlConnection again.
http://www.eggheadcafe.com/articles/adonet_source_code_generator.asp
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Session Madness 7
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
accessing another user's session state 6
Need Help Using A Custom Session Manager 0
Session Killer 3
How to effectively develop a web application from scratch? 0
Static Page Methods and Session Timeout's 6
Audio Madness @#!#@ 0

Members online

Total: 34 (members: 2, guests: 32)
Robots: 138

Forum statistics

Threads
473,772
Messages
2,569,591
Members
45,103
Latest member
VinaykumarnNevatia

Latest Threads

Top