Why SESSION variables fail if browser cookies OFF ?

[Doug Bell]

session("<label>") fails
if the browser's Privacy setting has cookies off.

What's going on?

 

[Marina]

Because the sessionid is stored in a session cookie on the client. If
cookies are turned off, then this sessionid cannot be stored - and as far as
the server is concerned, it always looks like a new session, since it never
gets the sessionid it assigned previously.

 

[Doug Bell]

Session ID is stored in cookies.

How can I work around this?

 

[Guest]

How is this solved in .NET

----- Marina wrote: ----

Because the sessionid is stored in a session cookie on the client. I
cookies are turned off, then this sessionid cannot be stored - and as far a
the server is concerned, it always looks like a new session, since it neve
gets the sessionid it assigned previously

 

[Elio M. Gonzalez]

Simple. Instead of sending the session identifier in a cookie, you pass
it in the URL as the user moves throughout the site.

Here are a few articles describing it:
http://msdn.microsoft.com/msdntv/episode.aspx?xml=episodes/en/20030318ASPNETRH/manifest.xml

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnaspnet/html/asp12282000.asp

Elio Gonzalez