Cookie Less Session

DBA_Rahul · #1 (**permalink**) 09-07-07, 02:35

Hi,
How do I handle session when cookie is disabled from client machine?

Thanks,
Rahul Jha

DBA_Rahul · #2 (**permalink**) 09-10-07, 05:44

y no answer till now?

gvee · #3 (**permalink**) 09-10-07, 05:55

This is why.

SimonMT · #4 (**permalink**) 09-11-07, 08:34

If cookies are disabled I don't think Session variables will work. The alternative is "carry" these variables via Querystrings from Page to Page. This is I would not recommend.

I only use Session variables for back navigation and if visitors have Session Variables disabled the back navigation does not work, instend visitors go to the first page rather than the Page they exited. This does not affect the overall performance of the website.

Simon

DBA_Rahul · #5 (**permalink**) 09-12-07, 01:20

my question is, as how do the web server identify a particular user / client when the session is disabled.

SimonMT · #6 (**permalink**) 09-12-07, 10:44

This depends if the user logs in or not.

We are not interested in the users so they are anonymous.

Heres a script:

Code:

<HEAD>
<title>Server Variables</title>
</HEAD>

<body bgcolor="#FFFFFF" text="#000000" link="#804040" vlink="#008080" alink="#004080">
<HTML>
<BODY>
<div align="left">
<table border="0" cellpadding="0" cellspacing="0" width="750">
<tr>
<td valign="top" align="left" width="150"><font face="Arial" size="2" color="#FF0000"><b>Variable Name</b></font></td>
<td valign="top" align="left" width="600"><font face="Arial" size="2"><b>Value</font></b></td>
</tr>
<%
for each name in request.servervariables
%>
<tr>
<td valign="top" align="left" width="150">
<font face="Arial" size="1" color="#FF0000">
<%= name %></font></td>
<td valign="top" align="left" width="600">
<font face="Arial" size="1"><%= request.servervariables(name) %></font></td>
</tr>
<%
Next
%>
</table>
</div> 
</BODY>
</HTML> 
</BODY>

</HTML>

Simon

DBA_Rahul · #7 (**permalink**) 09-13-07, 00:50

Simon,
Thnkx 4 ur response. But what i am looking for is, not the same that ur trying to respond. My question is how do a session is maintained for any user when the cokkies is been disabled from the client machine? as we all know that a session id is been created at the server end and is send across to the client in form of cookies along with the http header. now when the cookies itself is been disabled at the client end, then how do the server knows that the new request that has coem to the server from the client is from the existing user / client or it is from a new user / client.

thnkx,
rahul jha

SimonMT · #8 (**permalink**) 09-14-07, 09:38

All the cookie is don't is remembering information. Its like storing Telephone Numbers in your phone. You can still dial the number or lookup it up on your caller list. So without cookies when you revisit there is no information locally so you are treated as a fresh visitor.

Simon

DBA_Rahul · #9 (**permalink**) 09-28-07, 02:36

Ok, Lemme give some scenarios........

1. A request was send to the web server for some page, say "a.asp"
2. Client recieves the page "a.asp" and also the cookie file along with the http header to uniquely identify the client.
3. Now some sesion variables are created and stored some values in it. Say Session("User") = 'Rahul' and Session("Password") = 'Pass'.
4. And now I have disabled the cookie at the client's machine, and sends the request to the server for some page say "b.asp"
5. Now as the cookie is disabled at the cliemt machine.......... I have following question from the above scenarios..........

---- Will the server recognise the request as the fresh one or will it consider the 2nd request from the client?

---- Will I be able to access the Session variables session("User") / Session("Password") in the page "b.asp"?

Thanks,
Rahul Jha

DBA_Rahul · #10 (**permalink**) 09-30-07, 23:50

answer meeeeeeeeeeeeeee

Internet Services

Web Development

Digital Marketing

Consumer Tech