Best Way To Identify User / Shopping Cart

Discussion in 'ASP General' started by Jason Burr, Dec 9, 2003.

  1. Jason Burr

    Jason Burr Guest

    I was wondering what the best approach to handling a shopping cart was. My
    concerns

    1. Cookies not accepted (session variables not maintained and setting
    retreiving cookies doesn't work)
    2. Use an IP (people behind firewalls or using NAT or other subrouting
    appear as same client)
    3. Use of GET (people can bookmark cart contents then return and an order
    has been fuffilled but shows as new because contents of string are
    bookmarked too)

    Am I being dense here?

    Thanks in advance for any useful comments.
     
    Jason Burr, Dec 9, 2003
    #1
    1. Advertisements

  2. Jason Burr

    CJM Guest

    For alternatives for storing sessio state:
    http://support.microsoft.com/?kbid=175167

    I think the DB version is the most suited to your needs.

    Use querystrings to pass a DB Session ID to each page:
    //www.mysite.asp?sessionid=12345

    Store this session information in a DB.

    Regularly cleanout the Sessions table to delete old sessions. [Sessions that
    are cobverted to orders are obvioulsy in a serperate table]

    hth

    Chris
     
    CJM, Dec 9, 2003
    #2
    1. Advertisements

  3. I was wondering what the best approach to handling a shopping cart was. My
    I always find this amusing. Do you think people who don't trust your site
    enough to allow a session cookie, are going to fork over their credit card
    information?

    Anyway, see http://www.aspfaq.com/cart for a very simple example that does
    not rely on cookies.
     
    Aaron Bertrand - MVP, Dec 9, 2003
    #3
  4. Jason Burr

    Jason Burr Guest

    The answer to that is a big yes. Alot of people install software that blocks
    cookies and they are ignorant to it until sites dont work then they really
    dont trust the site and its something that was their doing through
    ignorance. I have had plenty of people come to me whining about that very
    issue.

    I know about the faq and have the example and that falls under my concern
    about people behind a cable router using NAT etc. since the example seems to
    use the ip of the user for identity. I didn't get in depth with it maybe I
    missed something there.
     
    Jason Burr, Dec 9, 2003
    #4
  5. I know about the faq and have the example and that falls under my concern
    No, it does not. I believe it stores the IP address, but that is not used
    to uniquely identify users - it is just for logging.
     
    Aaron Bertrand - MVP, Dec 9, 2003
    #5
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.