tags:

views:

123

answers:

1
+1  Q: 

Maintaining session information between 2 asp.net calls programmatically?

Hi,

I'm not sure if I'll be clear enough in my explaination to make you guys understand, but I'll try.

Here's my problem:

We have an external site which the users in our company connect to by giving their corresponding username and password. The external site is an ASP.NET website. We want to integrate this website into our intranet portal so that the users don't have to enter their UN/Pwd to login to the website. Since the target website has no provision for SSO, we are simulating the POST request to login.

So far so good.

We are now required to perform an action after the initial login is done, on an another page. We can simulate the corresponding POST request as well. But the problem is since we are not maintaining any session information in our initial POST request, it always redirects to the login screen!

Is there any way to maintain ASP.NET session information between multiple calls done programmatically? Can we create an ASP.NET session id cookie programmatically and then pass it along with our initial request?

Or this is not possible at all?

Any comments are appreciated.

Thanks for your help.

Regards.

A: 

Maintaining the state is the responsibility of the other site (typically in a cookie).

You should perform the actions manually, then use Fiddler to compare the HTTP requests and figure out what's wrong.

SLaks  2010-03-17 17:49:45
After I Post the login request programmatically, I don't see any cookies returned in the response.Since its HttpWebRequest, shouldn't the target site create the ASP.NET_SessionId cookie and return it in the response? Or Am I missing something?
Santhosh  2010-03-17 17:53:03
Are you POSTing on the client or the server? Do you see the cookie in Fiddler?
SLaks  2010-03-17 17:55:05
I'm creating a HttpWebRequest internally and then posting it to the server. Fiddler does not catch it, since this is not through a browser..But when I check the response back from the server, I see no cookies being returned at all..
Santhosh  2010-03-17 18:22:36
Run Fiddler on the server and see what the other site returns. Are you using a `CookieContainer`?
SLaks  2010-03-17 19:08:31
Yes. I think I know what the problem is, but not sure of the solution.. I'm using the HttpWebRequest and HttpWebResponse which is used to represent an "outgoing" request and "incoming" response. These two classes use the System.Net.Cookie to represent cookies, where as the ASP.NET_SessionId is an HttpCookie present in the System.Web class. Now I'm not sure how to "maintain" the session I've established through the initial POST request! Any thoughts?
Santhosh  2010-03-17 19:13:51
The classes in `System.Web` are used by the web server to send cookies to your client (the end-user's web browser). The classes in `System.Net` are used by `HttpWebRequest` to _receive_ cookies in your code from the remote server (and to send them back). You need to maintain a `CookieContainer` in session state to hold the auth cookie from the remote site. (This cookie will not be sent to the client's browser, and will only be used by your `HttpWebRequest`s)
SLaks  2010-03-17 19:17:47
I'm maintaining the CookieContainer (which is empty) in my HttpWebRequest, but when I get the response, the CookieContainer is still empty. I don't see any auth cookie sent from the server. The cookie count in the response is "0".Not sure what I'm doing wrong, but this is driving me crazy!Somehow if I can get hold of the session id established on the remote server, I'll be all set. But that's not happening!Thanks for all your help!
Santhosh  2010-03-17 19:25:52
HttpWebRequest req = (HttpWebRequest)WebRequest.Create(url);req.Method = "POST";req.ContentType = "application/x-www-form-urlencoded";req.ContentLength = buffer.Length;req.Proxy = new WebProxy(proxy, true); // ignore for local addressesreq.CookieContainer = new CookieContainer(); Stream reqst = req.GetRequestStream(); // add form data to requestreqst.Write(buffer, 0, buffer.Length);reqst.Flush();reqst.Close();HttpWebResponse res = (HttpWebResponse)req.GetResponse();// res.Cookies.Count is zero here..
Santhosh  2010-03-17 19:29:24
Then your login request isn't working. You _need_ to run Fiddler and find out what's wrong. However, the first thing to try is adding a `User-Agent` header.
SLaks  2010-03-17 19:31:35
It worked!!Thanks SLaks for your help..The info I was looking for (The ASP.NET_SessionId) was present in the "Headers" section of the "req"(HttpWebRequest) element as a "Cookie" after the "req.GetRequestStream();" was run.I now have access to the SessionId which I can make use to maintain this session..Thanks again for your help!
Santhosh  2010-03-17 19:37:09

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps