problem in session state cookies

  • Thread starter Thread starter raghavendra
  • Start date Start date
Hi Brian,

Thank you for posting in Microsoft Newsgroup. Regarding on the issue, I am
finding proper resource to assist you and we will update as soon as
posible.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
 
Hello,

Based on my understanding, now the question is: How to use thirdParty XML
Element in ASP.NET? Please post here if I have misunderstood the quesiton.

thirdparty element is one of XML Elements for Custom Privacy Import Files.
A Custom Privacy Import Files is used in browser side. That is to say, web
clients make use of this file. They import this file into IE 6 to
customized privacy setting.

ASP.NET is used in server side programming. I don't think these elements
are valid in server side. By using asp.net in server side, what we send is
compact policies.

In Internet privacy, compact policies are sent on server side to describe
the data categories, purposes of data collection, and recipients of the
data collected. Compact policies are sent by server using a custom HTTP
response header using the syntax shown in the following example.

P3P: CP="CAO PSA CONi OTR OUR DEM ONL"

This header can be added to an HTTP response using Active Server Pages
(ASP), ASP.NET or through the computer management console on Microsoft
Windows 2000 server and other popular Web servers. It is important to note
that cookie compact policies are sent from the server along with the cookie
data on HTTP responses, while decisions and settings regarding cookies are
made on the client (Internet Explorer 6).

Does that answer your question?

Best regards,
Yanhong Huang
Microsoft Community Support

Get Secure! ¨C www.microsoft.com/security
This posting is provided "AS IS" with no warranties, and confers no rights.
 
Hi Huang,

Actually, my question was

As, per the browser settings a user can session cookie.

How to programmatically enable this option.

i.e in browser... Tools... internet options .. privacy tab ... advanced
... ... override automatic cookie handling ... always allow session cookies.


****************************************************************************
******************
Earlier i asked is ...................


http://msdn.microsoft.com/library/d...curity/privacy/customimportxml/thirdparty.asp..

i want to know, how to use this below code in ASP.NET.
<thirdParty noPolicyDefault="accept" noRuleDefault="accept"
alwaysAllowSession="yes"/>only, because of the cookie was not residing
physically on hard disk.

****************************************************************************
************

In this link they have mentioned this code or tag .....
But, i don't to use this....

Thankx ,
Raghavendra tilve...
 
Hello Tilve,

Thanks for the quick response.

I think in order to set it in client side, we may need two steps:

1) Create a Customized Privacy Import File by ourselves. Please refer to
MSDN article "How to Create a Customized Privacy Import File" on this
topic. The web link is
http://msdn.microsoft.com/workshop/security/privacy/overview/privacyimportxm
l.asp#mediumexample. It contains some sample XML files.

The thirdparty element is defined in this file.

2) Improt the pivary file into the system. Please refer to API
ImportPrivacySettings to get more information on it.

I don't think it is related to ASP.NET since they are all settings in
client side.

Thanks again and Merry Christmas! :)

Best regards,
Yanhong Huang
Microsoft Community Support

Get Secure! ¨C www.microsoft.com/security
This posting is provided "AS IS" with no warranties, and confers no rights.
 
Back
Top