Last post Dec 12, 2019 05:30 AM by Yang Shen
Dec 11, 2019 05:16 AM|Arkadeep De|LINK
Dec 11, 2019 10:51 AM|sanjibsinha|LINK
The "cookieNam" is an Attribute, it is new in the .NET Framework version 2.0. The default is "ASP.NET_SessionId".
For each of your applications you can set the "cookieName" attribute of the "sessionState" XML element in your web.config to different values.
Dec 11, 2019 02:12 PM|Arkadeep De|LINK
Dec 11, 2019 02:28 PM|mgebhard|LINK
My question was different. Is it a best practice to change the path of the asp.netsessionid as it is put by .net framework itself. And if I am trying to change the path of the same, it was created with another one with the custom path.
The standard docs cover cookie path.
Dec 11, 2019 02:37 PM|Arkadeep De|LINK
Dec 11, 2019 03:11 PM|mgebhard|LINK
Thanks for the URL. But here it is all about the custom cookies. My question is simple. Do we need to change the path of the ASP.netsessid cookie as ita default path is root. And if I change the path can I access the session s in my root level?
Session uses a cookie.
Are you trying to share Session across applications?
Dec 11, 2019 03:32 PM|sanjibsinha|LINK
I Don't think it as a best practice, because you need to work extra either on EndRequest Event handler, or on HttpModule and also in your global.asax file.
You may have a look at the following link.
Dec 11, 2019 04:08 PM|Arkadeep De|LINK
Dec 12, 2019 05:30 AM|Yang Shen|LINK
Hi Arkadeep De,
About session security, you can refer to this very detailed article:
Ramping up ASP.NET session security.
"ASP.NET has two ways of transmitting session IDs back and forth to the browser, either embedded in the url or through a session cookie. "
If you are talking about the embedded in the url situation, please refer to
HttpCookie.Path and mapped urls while your application has one single page then i guess this is not what you want?
In another situation, then that's even more puzzling, the ASP.Net _Sessionid cookie is not persisted on your hard disk and it gets discarded when you close the broswer. Please check ASP.NET
Cookies Overview and you will see it in the Note. As far as i know, this cookie is automatically generated and you are not able to change it.