tags:

views:

34

answers:

3
Q: 

Session Timeout Logout user

I want my application to log out the logged in user and take them to the Loing.aspx page as soon as the Session times out. The user should be logged out without any event being triggered. I have tried making changes in authentication mode but all in vain...

A: 

Web Forms are not like Windows Forms, but you might play with it a bit.

You can't catch a Session.End event and redirect the user to somewhere else, but you might play with cookies. Sessions expires, cookies' expiration is controlled by your code.

The first thing that comes into my mind is to set a cookie after login, then at every page load check

if (cookie is present && Session["LoggedIn"]==null)
    Response.Redirect("Login.aspx");

This is a brute hand-written pseudo code that might help you make an idea.

But another question rises: if you are in a protected area and session expires, ASP.NET, as soon as you configured authentication well should automatically bring you to the login page.

By "well configuring" I mean following all the standard procedure to create protected areas within your web application and using Forms authentication: RTFM for that http://www.asp.net/security/tutorials/an-overview-of-forms-authentication-vb

djechelon  2010-10-11 23:34:51
A: 

If your forms authentication is properly setup (Like mentioned here) , and given that you anyways don't want to trap any event on session timeout, then ideally if user is InActive for 20 mins (which is the default session timeout time unless you changed it), application would automatically redirect any next request to Login.aspx. But make sure that you followed all steps given in the above link (basically correct authentication and authorization tag etc).

Subhash Dike  2010-10-12 08:03:34
I'm guessing that the asker here wants the user's browser to be taken to the login.aspx page as soon as the session times out on the server, as opposed to being taken there the next time the user tries to access another page.
MusiGenesis  2010-10-14 23:15:08
A: 

Try adding following tag under <system.web> in web.config

<sessionState mode="InProc" timeout="200"></sessionState>

kapil  2010-10-13 10:19:24

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?