best and secured way to pass the asp.net session token from page to page. 1. cookies (not secured) 2. url (not secured) 3. hidden fields ? using hidded fields is right way to pass ? how to pass using hidded fileds? how to disble the session token in cookies and also in url (session state conguration)?
A:
From my answer for similar question, "securing ASP.NET forms authentication token on client side?" :
Session:
Fast, Scalable, and Secure Session State Management for Your Web Applications
rick schott
2010-07-23 13:24:36
Did my answer help you solve your problem?
rick schott
2010-08-13 17:49:00