session

Session null in ASP.Net MVC Controller Constructors

Hi, Why is Session null in the constructors of Controllers? It can be accessed from Action methods. Presumably, because the MVC Routing framework is responsible for newing-up a Controller, it just hasn't (re-)instantiated the Session at that point. Does anyone know if this is by design and, if so, why? [I have managed to circumvent th...

ASP.NET: Is it possible to iterate through all Session objects?

In ASP.NET 3.5, is it possible to iterate through all of the session objects (not the objects within the current session, but all sessions across all users) so that their collection contents can be manipulated (i.e. one collection item removed from all active sessions)? And if so, does this work with ASP.NET State Service (accessing all...

Destroy cookies in rails, facebook connect, facebooker plugin

So I have sort of a weird situation going on. I am using the Facebooker plugin for rails where I want users to be able to login and logout with their facebook profiles. However, once users logout, if I refresh the page, it logs them back in. This is only when users log in with facebook connect. I think the problem is that a rogue coo...

Authlogic - Logout not working on production but working in dev?

I have only just started to investigate... but thought I would throw this to the community as well. I am building an app using Authlogic for authentication. The auth part is basically straight off the authlogic tutorials... My logoff button works in dev, destroying the session and giving the flash on the root_url. However, on productio...

How can I redirect to logon.jsp with unencrypted password in the HTTPSession?

I have a j2ee web app that is using JAAS form based authentication. However, due to some unusual requirements, I cannot have the user enter their username and password directly into the logon.jsp form and have them submit it. Instead, I must gather the data on a separate page, and then later redirect to logon.jsp to log them in. What I ...

Redirect to Login Page on some condition of session check

In C# with MVC, i want to write a common utility or class in which if a particular conditoin fails need to redirect to login page. For ex.: When the user logged in to the website, userid will be added to session. To Access the "ManageUsers" page, the user should be logged in as admin, else i need to redirect to Login page. i need to che...

Rails w/ ActiveRecord Sessions and Restful-authentication: when does the sessions table get written to?

Warning: some of this may be very wrong-headed, so please let me know if my assumptions are incorrect. Here's what I'm trying to accomplish: I'm using restful-authentication for login. However, as I am using flex/ruby_amf for my UI, I have to separately authenticate each connection from flex. The way I decided to do that was by havin...

SSL Session reuse with SChannel (Windows)

Hello I have a program that use schannel.dll to make a SSL connection to remote server. But I'd like to disconnect from server often and reconnect without the need to renegotiate shared key again. I know that SSL support this, but don't know how to make it with SChannel. Can you help me? Here are some links that can help: Creating a ...

Can I rely on session availability after redirect to & from another server?

Hi, the question's in the title really. I have an online form where, after a series of stages, the user is sent off to a payment gateway on another server, then back again after completing their details there (no card or personal info is sent, just encrypted tokens, that's the point). So can I rely on the session data still being avail...

Is there a way to find out the age of an asp.net session?

How do I find out how old an asp.net (3.5) session is? ...

Displaying Member Details To Correct User

Hi there, I currently have a website and upon registration to the website i generate each member a unique GUID. Upon the user logging in to the website i check the credentials and store the guid in session if successful, in order to show the user there profile / how many post have been made etc i run my queries to the database passing t...

Permissions to PHP session files

Hi I have a domain domain.com and subdomain sub.domain.com Those two domains have different ftp users (user1, user2) belonging to the same group (usergroup) on linux environment. Finally I have the same PHP application that uses sessions on both domains (one is live and other is testing environment). When I go to domain.com without go...

What is the proper way to re-attach detached objects in Hibernate?

I have a situation in which I need to re-attach detached objects to a hibernate session, although an object of the same identity MAY already exist in the session, which will cause errors. Right now, I can do one of two things. 1.) getHibernateTemplate().update( obj ) This works if and only if an object doesn't already exist in the hibe...

PHP Sessions Expiring Unexpectedly

I'm at a loss here. I've got a specific group of users upstairs whose sessions seem to expire completely randomly. It's not just when they leave the site sitting for a while, it can expire while they're browsing around. For me and most of our users everything works just fine. It's not a browser issue, we've got people in FF and all I...

How can I persist a session in an iframe?

Suppose I have a web app that I want to embed into any other site using an iframe. The iframe references my site and operates independently of the hosting web page. Well, the browser considers the iframe to be a third party site, therefore its session cookie is considered a third party cookie. Some methods exist to make the browsers h...

cookieless session temporary internet files (asp.net)

Hi, background: I work on an asp.net web application that is on a company intranet. cookieless="true" is set in the web.config in the sessions configuration. The application is launched off a page and can run in several different modes (a different link for each mode). It is a business requirement that multiple instances of the applicat...

Read Session Id using Javascript

Is it by any means possible to read the browser session id using javascript? ...

Session management in gwt

I am using GWT for my client side application. However, I am not sure how I can handle session management. The GWT application resides on one page, all server calls are done via AJAX. If a session expires on the server. let's assume the user didn't close the browser, and sending some request to server using RPC, how could my server notif...

Giving anonymous users the same functionality as registered ones

I'm working on an online store in Django (just a basic shopping cart right now), and I'm planning to add functionality for users to mark items as favorite (just like in stackoverflow). Models for the cart look something like this: class Cart(models.Model): user = models.OneToOneField(User) class CartItem(models.Model): cart = m...

Should Business layer of the application be able to access Session object?

Say you have 3 layers: UI, Business, Data. Is that a sign of poor design if Business layer needs to access Sessions? Something about it doesn't feel right. Are there any guidelines to follow specifically tailored to web app? I use c# 2.0 .net ...