tags:

views:

2242

answers:

3
+2  Q: 

ASP.NET Cookie Expires value resets on Response.Redirect?

I have a script that reads a form and puts some info into a cookie:

Dim oCookie as HttpCookie
oCookie = New HttpCookie("authInfo")
Select Case oResult
Case "No ClientID", "No Password", "No PracType", "No Encrypt", "CRC Mismatch"
    oCookie.Values.Add("LoggedIn", "False")
    oCookie.Values.Add("OnSupport", "False")
Case "Client Can Update"
    oCookie.Values.Add("LoggedIn", "True")
    oCookie.Values.Add("OnSupport", "True")
Case "Client Cannot Update"
    oCookie.Values.Add("LoggedIn", "True")
    oCookie.Values.Add("OnSupport", "False")
End Select
oCookie.Expires = DateTime.Now.AddHours(2)
HttpContext.Current.Response.Cookies.Add(oCookie)
HttpContext.Current.Response.Redirect("default.aspx")

The time is properly set right before it redirects, but when I try to print out that value this way (I have also tried Dim oCol as HttpCookieCollection = Request.Cookies, but I get the same result):

Response.Output.WriteLine(Request.Cookies("authInfo").Expires.ToString)

The time is always reset "01/01/0001 12:00:00 AM". Am I missing something that prevents the cookie from holding its Expires value?

+7  A: 

Request.Cookies and Response.Cookies and use of the common cookie object makes of an intuative idiom but in fact a Request cookie and a Response cooke are quite different.

When you assign a Cookie in the response a Set-Cookie header gets added to the output and that will contain not only the value but also the path and the expiries value.

However when the browser sends the cookie back to the server in another request it simply includes the cookie name and value. It does not send path or expires info.

Hence these properties are meaningless when using the Request.Cookies collection.

AnthonyWJones  2009-01-15 14:47:11
So how, if it is possible, do I preserve the Expires value?
Anders  2009-01-15 14:48:57
@Anders: are you changing the cookie value? If so why would it not get a new expires value? If not why are you trying to set it again, you need only create the cookie once.
AnthonyWJones  2009-01-15 14:54:48
No, check the code above. I am creating a new cookie, setting 3 values (including the Expires; 2 otherwise).
Anders  2009-01-15 14:56:42
@Anders: The browser will preserve it and will terminate the cookie once it has expired. Do you need to read the expires value in a subsequent request? If you so you will need store it in some other persistant storage serverside.
AnthonyWJones  2009-01-15 15:03:34
You don't need to preserve the value. It staysconstant until hte cookie expires. Also FYI you really shouldn't be passing sql queries around in cookies. Execute the sql and get the value and store that in a cookie, but not the query itself. It's not that hard for other people to view those.
Chris Westbrook  2009-01-15 15:05:30
@ Chris: I am not storing queries in the cookies, where do you see that?
Anders  2009-01-15 15:09:29
@Anthony: I think I'll encode a string containing all the values I need then pass that along instead of trying to muck around with this issue. Thanks for your insight on how Request/Response cookies work and differ.
Anders  2009-01-15 15:27:03
Never mind, I've been using sql too long and saw select case and thought that was an sql statement. Geeze I need to go home. :)
Chris Westbrook  2009-01-15 20:17:15
A: 

I ran into such an issue when the initial request came from a different domain.
make sure you also add the domain for the cookie.

Dror  2009-01-15 14:50:53
I tried that; no avail. I am testing on localhost right now, do I need include the port as part of the domain (ie localhost:12345 instead of just localhost)?
Anders  2009-01-15 14:54:20
Nevermind, that did not work either.
Anders  2009-01-15 14:55:41
A: 

If you want to check for the expiration date you can add it to the cookie value collection. Then retrieve it and do the check.

Gargamel  2009-08-12 14:42:16

related questions

What are the most important functional differences between C# and VB.NET?
Setting Group Type for new Active Directory Entry in VB.NET
ASP.Net Datagrid: in Footer calculate Avg or Sum for column
Opening a file in my application from File Explorer
HTML Email Editor in a Windows Forms Application
Datatables, Dataviews and distincts! (ASP.Net/VB)
Naming convention for VB.NET private fields
Visual Studio - new "default" property values for inherited controls
Change the width of a scrollbar
Is String.Format as efficient as StringBuilder
Default Form Button in FireFox
VB.NET - IsNothing versus Is Nothing
'Break' equivalent keyword for VB
What is the best way to wrap time around the work day?
Best SVN Client Ignore Pattern for VB.NET Solutions?
Long-time LAMP Developer moving to VB.NET
What's the best way to find long-running code in a Windows Forms Application
What is the best way to deploy a VB.NET application?
'Best' Diff Algorithm
Setting Objects to Null/Nothing after use in .NET
CSV File Imports in .Net
How do you migrate a large app from VB6 to VB .net ?
Floating Point Number parsing: Is there a Catch All algorithm?
Decoding T-SQL CAST in C#/VB.net
Reliable Timer in a Console Application