Last post Jul 18, 2018 06:02 AM by Nan Yu
Jul 17, 2018 03:48 PM|Koala Bear1|LINK
I am developing a C# MVC Web Application. I want to allow multiple users to login from different tabs in the browser. So, I have to disable session sharing in multiple tabs in the browser.
Therefore, I changed to <sessionState mode="InProc" cookieless="true"> in web.config
The browser Url has changed from http://localhost:64564 to
I am not able to make AJAX calls because the Url has changed to http://localhost:64564/(S(ljqjxg0c0ohiuvsytxglfbot))/
Please provide solution to this issue ASAP.
Thanks in advance
Jul 17, 2018 06:30 PM|mgebhard|LINK
Cookieless session is a security vulnerability anyway.
I am developing a C# MVC Web Application. I want to allow multiple users to login from different tabs in the browser.
This requirements does not make sense for a couple of reasons. User's authentication with an application not a browser tab. Session and login are two different frameworks unless you built a custom authentication framework that uses Session. At which
point I advise you use the ASP.NET built-in authentication framework.
The simplest solution is to not use Session at all and/or build the solution so that opening multiple tabs works as expected.
Can you explain the problem you are trying to solve and how your authentication framework functions.
Jul 18, 2018 06:02 AM|Nan Yu|LINK
A session is shared among all the tabs. ASP.NET cookieless sessions and cookieless forms authentication allows different tabs to be logged in as different users. But that is not recommended :