aspvbnetnerd
Programmer
Is it possible to get a new SessionID without using Session.Abandon()?
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Session.SessionID
- Thread starter aspvbnetnerd
- Start date
- Status
Ask the user to delete their cookie?
All Session.Abandon does is force an internal cleanup and expires the cookie that was sent to the end user with their SessionID. The only way to give them a new session ID is to force them to start a new session. To do that you either need to clear the cookie or call Session.Abandon (which will clear the cookie).
The only difference is that when you use Session.Abandon, the session variables are cleaned up for that user. When you don't, they hang around. But since you were going to give a new ID to the user, those variables will be inaccessible, as they are tied to the original Session ID.
All Session.Abandon does is force an internal cleanup and expires the cookie that was sent to the end user with their SessionID. The only way to give them a new session ID is to force them to start a new session. To do that you either need to clear the cookie or call Session.Abandon (which will clear the cookie).
The only difference is that when you use Session.Abandon, the session variables are cleaned up for that user. When you don't, they hang around. But since you were going to give a new ID to the user, those variables will be inaccessible, as they are tied to the original Session ID.
- Status
Similar threads
- Locked
- Question