Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

IIS/IE session variable/cookies being overwritten...

Status
Not open for further replies.
CalBrit

CalBrit

MIS
Dec 13, 2001
6
US
Hi,

We are trying to get to the bottom of the following issue, but not sure if this is an IIS/IE problem or a coding problem.


Environment: IE 4.0/5.0/5.5, Windows NT 4.0, iis 4/5(NT+Win2k), multiple sites with one virtual directory each.

Step-by-step action:

1.Open an IE window, enter the website and logon (userid & pwd)
2.The userid is kept in the response.cookies & session variables
3. If the user only stays in one window, the sessions & cookies have the correct values.
4. If the user opens another IE window, logs on as a different user, the ASP sessions & cookies of the first window have the values of the sessions & cookies of the second window with the exception of the ASPSessionID - it never gets overwritten.

The bottom line is if we open one IE window at a time then we are OK. But, what causes the cookies & sessions to be overwriten when the second window is opened ?

Any ideas ?

Thanks in advance,

CalBrit&Co
 
Sort by date Sort by votes
I would assume that IE is trying to be smart by noticing that one session is already started so it keeps the same session ID.

Ok, I just wrote a quick page to just display the SessionID.

When I opened a new window, by clicking on the explorer shortcut on my desktop, the sessionID changed. When I went to run and typed in the address, it did not change. When I went to run and typed in iexplore, it changed, and when I went to file-->new-->window it did not change.

So, how are you opening the new window??

Either way though...the cookie will have to be overwritten, the session objects should not be if you in fact start a new session.

Does any of this make sense??

Oh...I should also add, all this is just what I noticed by using the page I just wrote.

Mike
 
Upvote 0 Downvote
Thanks Mike,

I tried your suggstions with varoius combinations of opening IE, but to no avail. It seems no matter how you open the browser for our sites, we get the same issue.
We are going to re-write our code to support Netscape, and give that a try.....

Thanks for your help

Simon
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
494
gbaughma
gbaughma
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
289
DrB0b
DrB0b
penguinroundup
  • Locked
  • Question
programmatically delete all saved passwords for IE for any user
Replies
0
Views
99
penguinroundup
penguinroundup
GriffMG
  • Locked
  • Question
Server 2016 IIS - When opening default web page in Edge (chromium) it downloads rather than opening
Replies
1
Views
131
GriffMG
GriffMG
donb01
  • Locked
  • Question
IIS - Can I do this Redirect?
Replies
1
Views
86
donb01
donb01

Part and Inventory Search

Sponsor

Back
Top