I
isaac2004
how would go about making a session timeout expire with a method like
you can expire a cookie by going Date() - 1
you can expire a cookie by going Date() - 1
how would go about making a session timeout expire with a method like
you can expire a cookie by going Date() - 1
session.abandon is the way to go.\
i have a db driven shopping cart that uses a session id as a varible
for storring individual carts and items
isnt this method unefficient
and is there any other way
isaac2004 said:i have a db driven shopping cart that uses a session id as a varible
for storring individual carts and items
isnt this method unefficient and is there any other way
Session.SessionID is _very_ unreliable!
This is because the SessionID is just a numeric value, that can be
reset at any time, and it is not a unique number!
Identify your basket using a string-GUID for instance,
hey i found out that i can just use the delete part of a SQL statement
sorry alot of people were giving advice so i thought just by doing that
it would limit confusion
anyway i started this thread with an original problem that i fixed, now
there is another problem, i get this error
No. It means you've specified an object, either a table or a field name,isaac2004 said:Please quote what you are replying to.
sorry alot of people were giving advice so i thought just by doing
that it would limit confusion
anyway i started this thread with an original problem that i fixed,
now there is another problem, i get this error
[Microsoft][ODBC Microsoft Access Driver]
http://www.aspfaq.com/show.asp?id=2126
Too few parameters. Expected
1.
doesnt this mean that i am trying to delete something that doesnt
exist, here is the delete SQL code
strDeleteSQL = "DELETE FROM tblCart WHERE strSessionID = " &
strSessionID
objRS.Open strDeleteSQL, objConn, adOpenForwardOnly,
adLockOptimistic
does this look right
Evertjan. said:Egbert Nierop (MVP for IIS) wrote on 12 mrt 2006 in
microsoft.public.inetserver.asp.general:
And how many sessions would you need to have at one time to come near the
number that the session ID has a reasonable chance of being duplicated?
Isn't that just as resettable?
Well at least with windows 2000, this was just a sequential number. I
did not test it for windows xp/2003 but the number is just a hashcode
to a bucket. It is not the right way to be unique.
Evertjan. said:Egbert Nierop (MVP for IIS) wrote on 15 mrt 2006 in
microsoft.public.inetserver.asp.general:
Under W2003 it is a very long string. Unicity is not needed, only relative
unicity.
Possibly they've changed the number as a hashcode from a GUID.
Still, I would not use the SessionID as unique identifier. It is not
documented to be unique.
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.