State Management

Re: session id issue

jeyaseelan@ajsquare.net — Tue, 07 Jul 2009 13:19:14 GMT

RITE05 thanks for your post.

Your question is not clear, at one place you told

Each user can able to see list of shops detail according to their permission.

in another place

But the issue is, shop 1 employees are able to see shop 2 details in the middle of the shop 1 process. Same thing happens in shop 2 too. Shop 2 employees are able to see shop 1 details while creating repair order for shop2.

i'm confused tell me, what exact you want? so that i can help you.

Re: session id issue

Bober Song - MSFT — Mon, 06 Jul 2009 02:39:22 GMT

Hi RITE05,

You should double check the Session object before comparing the Session objects value.

I assume that you use the if state to redirect the user to detail page.

If the Session object lost, your application will redirect to wrong page.

So, please try to add the following code:

if(Session["shopnumber"]!=null)
{
if(Session["shopnumber"]=="Shop1")
{
Response.Redirect("Shop1.aspx");
}
else
{
Response.Redirect("OtherShop.aspx");
}
}
else
{
//redirect to the login page
}

I hope it is helpful to you, if you have any questions, please feel free to let me know.

Re: session id issue

deepthoughts — Thu, 02 Jul 2009 20:10:24 GMT

Well,

It depends on how you are handling Shops manipulation in your application. In the Page_Load event you can put some check like

if(Session["ShopID"]!="Shop1")

{

Response.Redirect("Unauthorized.aspx");

}

to prevent "Shop2" users access a page specifically meant for "Shop1" users.

Hope it helps.

Re: session id issue

srinivaskotra — Thu, 02 Jul 2009 18:21:06 GMT

Hi,

in pageload method you have to write conditions as per your requirement.

if user1=page1.user then

do someting

endif

if you need more information paste your code snippets here so any one guide you.

Thanks :)

Re: session id issue

chanakya01 — Thu, 02 Jul 2009 08:19:24 GMT

In which part of your application you are facing this problem??

Where you are storing the session and retrieving back??

And where you are displaying the details based on the session value??

Give some code sample so that I can get a clear idea...

session id issue

RITE05 — Thu, 02 Jul 2009 06:23:04 GMT

Basically my application is a car maintenance. Each user can able to see list of shops detail according to their permission.

For example shop 1 employees cann't be able to see shop2 details. I am storing their shop number in session id when they login first time in the system.

If any one helps me ... I am really appreciate

Thanks