1. Allows to store any kind of data in memory on the server.
2. The client must present the appropriate session id with every request. This can be achieved in two ways:
- Using Cookies: Session Id is transmitted in a special cookie called ASP.NET_SessionId. Since this info is stored in memory it can quickly grow to performance destroying levels.
- Using Modified URLs:
3. Session can be lost in the following four ways:
a. If the user closes and restarts the browser.
b. If the user accesses the same page through a different window. Browsers differ on how they handle this situation.
c. If the session times out due to inactivity.
d. If the programmer ends the session in the code.
In the first two cases the session still resides on the server until it expires.
The session should be abandoned in the logoff action clearing and releasing all the memory.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment