Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
cookies vs. Session 1
- Thread starter GIGN
- Start date
-
1
- #2
It all depends on how many sessions you expect to have open at a given time. True, IIS will write a single Session cookie to every browser to maintain session state. However, from there, it's your decision to keep additional data in memory on the server (Session Variables) or in cookies on the visitor's computer. While cookies can free up memory on the server, I believe it slows down requests because of the round trips required to read from cookie files.
Here's the two most critical questions in determining how to maintain a shopping cart session with your visitors.
#1: How long do you want a shopping cart session to remain active if the visitor simply closes the browser window or walks away in the middle of a shopping trip.
#2: How many visitors (MAX) do you envision during that specific period of time. The time being your answer from question 1.
#3: What is it that you want to store in your session or cookie variables. If you're thinking about storing the shopping cart in either, I wouldn't recommend it. I just finished a shopping cart recently and this is what that particular individual did.
They had two tables in their database. One was for individuals user and the other was for shopping cart items cart. When a visitor would come into the site, the server would check a single cookie for a userid on the visitor's computer. If found, that relieved the visitor from identifying him/herself with the website. That was the only cookie stored on the computer. If the visitor did not have a cookie, then one was written after the visitor supplied his/her information on checkout.
The shopping cart table had a sessionID field, inventoryID field, and quantity field. As soon as the visitor placed one item in the cart, a record was appended to the table using Request.ServerVariables("HTTP_COOKIE"
as the sessionID value. This is the IIS session ID which is unique for every visitor and although this is the value that IIS writes to the browser as the Session cookie, it does not require a round trip to get the value. We had a DELETE method in the global.asa file that removed records from the shopping cart table when an IIS session terminated or timed out. We also removed items from the shopping cart table upon checkout.
That was it. One Session variable, which in this case is the single session variable that IIS creates when a browser requests the first page from your web site. And a single cookie variable so visitors did not have to re-enter personal information every time they came to the site.
Everything else was stored in database tables.
Hope this helps.
ToddWW
Here's the two most critical questions in determining how to maintain a shopping cart session with your visitors.
#1: How long do you want a shopping cart session to remain active if the visitor simply closes the browser window or walks away in the middle of a shopping trip.
#2: How many visitors (MAX) do you envision during that specific period of time. The time being your answer from question 1.
#3: What is it that you want to store in your session or cookie variables. If you're thinking about storing the shopping cart in either, I wouldn't recommend it. I just finished a shopping cart recently and this is what that particular individual did.
They had two tables in their database. One was for individuals user and the other was for shopping cart items cart. When a visitor would come into the site, the server would check a single cookie for a userid on the visitor's computer. If found, that relieved the visitor from identifying him/herself with the website. That was the only cookie stored on the computer. If the visitor did not have a cookie, then one was written after the visitor supplied his/her information on checkout.
The shopping cart table had a sessionID field, inventoryID field, and quantity field. As soon as the visitor placed one item in the cart, a record was appended to the table using Request.ServerVariables("HTTP_COOKIE"
as the sessionID value. This is the IIS session ID which is unique for every visitor and although this is the value that IIS writes to the browser as the Session cookie, it does not require a round trip to get the value. We had a DELETE method in the global.asa file that removed records from the shopping cart table when an IIS session terminated or timed out. We also removed items from the shopping cart table upon checkout.That was it. One Session variable, which in this case is the single session variable that IIS creates when a browser requests the first page from your web site. And a single cookie variable so visitors did not have to re-enter personal information every time they came to the site.
Everything else was stored in database tables.
Hope this helps.
ToddWW
- Thread starter
- #3
- Thread starter
- #5
While you're at it I have one other problem. I am storing [at the moment] my shoping cart items in cookies by there DB primary key:
...
Sub getKeys()
Dim SplitUpArray,equalSplit
Dim count
count = 0
splitUpArray = Split(Request.Cookies,";",-1,1)
' Now split at the "=" and pick out the relevant data.
For each index In splitUpArray
keys.add count, Split(index,"=",-1,1)(0)
count = (count+1)
Next
End Sub
...
With Response
.Cookies(product_id)("quantity" = quantity
.Cookies(product_id)("product_name" = product_name
End With
Call getKeys()
This is designed simply to get keys from the cookie, So later on I can query the database - but the first time I try this it gives error:
Microsoft VBScript runtime error '800a0009'
Subscript out of range: '[number: 0]'
/shop/addToCart.asp, line 18
After that - even with just refresh, it works fine. This is just annoying, and I would like to sort it out before I refine the whole thing - perhaps incorporating db instead of Cookies.
[bb]
...
Sub getKeys()
Dim SplitUpArray,equalSplit
Dim count
count = 0
splitUpArray = Split(Request.Cookies,";",-1,1)
' Now split at the "=" and pick out the relevant data.
For each index In splitUpArray
keys.add count, Split(index,"=",-1,1)(0)
count = (count+1)
Next
End Sub
...
With Response
.Cookies(product_id)("quantity"
= quantity.Cookies(product_id)("product_name"
= product_nameEnd With
Call getKeys()
This is designed simply to get keys from the cookie, So later on I can query the database - but the first time I try this it gives error:
Microsoft VBScript runtime error '800a0009'
Subscript out of range: '[number: 0]'
/shop/addToCart.asp, line 18
After that - even with just refresh, it works fine. This is just annoying, and I would like to sort it out before I refine the whole thing - perhaps incorporating db instead of Cookies.
[bb]
- Thread starter
- #6
- Thread starter
- #7
Is this being picky on MS' part?
You should not use the SessionID property to generate primary key values for a database application. This is because if the Web server is restarted, some SessionID values may be the same as those generated before the server was stopped. Instead, you should use an auto-increment column data type, such as IDENTITY with Microsoft® SQL Server, or COUNTER with Microsoft® Access.
Surely this is unlikely to happen - and we are deleting them on_End of session.
You should not use the SessionID property to generate primary key values for a database application. This is because if the Web server is restarted, some SessionID values may be the same as those generated before the server was stopped. Instead, you should use an auto-increment column data type, such as IDENTITY with Microsoft® SQL Server, or COUNTER with Microsoft® Access.
Surely this is unlikely to happen - and we are deleting them on_End of session.
- Thread starter
- #8
- Thread starter
- #10
I'm nearly there, but ny onEnd is still not working - I am testing it by trying to write something into Application, so I know it works, but even that does nothing.
I took all Redirect cals out, all I have in there is:
<SCRIPT RUNAT=SERVER LANGUAGE="VBSCRIPT">
Sub Session_OnStart
Response.write Session.sessionID
Application("deleted" = "nothing - new Session"
End Sub
Sub Session_OnEnd
Dim Connector,Records,SQL_DELETE
SQL_DELETE = "DELETE * FROM cart WHERE session_id = " & "'" & Session.sessionID & "'"
Application("deleted" = SQL_DELETE
End Sub
</SCRIPT>
What am I missing? onStart is working like it should.
I took all Redirect cals out, all I have in there is:
<SCRIPT RUNAT=SERVER LANGUAGE="VBSCRIPT">
Sub Session_OnStart
Response.write Session.sessionID
Application("deleted"
= "nothing - new Session"End Sub
Sub Session_OnEnd
Dim Connector,Records,SQL_DELETE
SQL_DELETE = "DELETE * FROM cart WHERE session_id = " & "'" & Session.sessionID & "'"
Application("deleted"
= SQL_DELETEEnd Sub
</SCRIPT>
What am I missing? onStart is working like it should.
I don't understand your Application("deleted" variable. Anyways, here's what I would do.
ToddWW
variable. Anyways, here's what I would do.
Code:
Sub Session_OnEnd
Dim Conn,SQL_DELETE,strProvider
strProvider = Your conn string or DSN
set Conn = Server.CreateObject("ADODB.Connection")
SQL_DELETE = "DELETE * FROM cart WHERE session_id = " & "'" & Session.sessionID & "'"
Conn.Open strProvider
Conn.Execute SQL_DELETE
Conn.Close
set Conn = Nothing
End SubToddWW
- Thread starter
- #12
- Thread starter
- #14
- Status
Similar threads
- Locked
- Question
- Locked
- Question