stackoom
  简体   繁体   中英

ASP.NET MVC Session.IsNewSession issue with Google Chrome

 原文  2011-03-25 16:17:00       c#/ asp.net-mvc/ firefox/ google-chrome/ session-timeout

Question

I'm currently working on a Session expired piece of logic for my ASP.NET 3.5 MVC 2 project to log out a user and redirect them to the AccountController LogOn action.

I have the following attribute on all my actions that care about session state, and this piece of code works in IE 8, but not Firefox 4 or Google Chrome 10. The symptom is when I attempt to navigate to a view represented by an action with my [SessionExpireFilter] attribute, the ctx.Session.IsNewSession property in the below code is evaluating as "true" every time, even if I'm only seconds into my 30-minute session. 

public class SessionExpireFilterAttribute : ActionFilterAttribute
{
    public override void OnActionExecuting(ActionExecutingContext filterContext)
    {
        HttpContext ctx = HttpContext.Current;

        // check if session is supported 
        if (ctx.Session != null && ctx.Session.IsNewSession)
        {
            // If it says it is a new session, but an existing cookie exists, then it must 
            // have timed out 
            string sessionCookie = ctx.Request.Headers["Cookie"];
            if ((null != sessionCookie) && (sessionCookie.IndexOf("ASP.NET_SessionId") >= 0))
            {
                FormsAuthentication.SignOut();
                ctx.Response.Redirect("~/Account/LogOn");
            }
        }

        base.OnActionExecuting(filterContext);
    }
}

Is there any way to figure out why Chrome and Firefox are behaving this way, but IE is not? Thanks in advance.

EDIT: This is not working in FF as I originally believed. I am being directed to my LogOn action immediately after logging in and attempting to access an action with my SessionExpireFilter attribute.

2 answers

solution1
 14 ACCPTED  2011-03-25 16:35:03

ASP.NET will create a new session for every request unless you store something in it. Try adding the code below to your Global.asax . It works in my MVC2 and MVC3 apps with the same SessionExpireFilterAttribute . 

protected void Session_Start()
{
    Session["Dummy"] = 1;
}

solution2
 1  2015-07-17 05:25:07

We can add session_start method in Golbal.asax file in MVC appliaction. 

  protected void Session_Start(object sender, EventArgs e)
      {                    
       HttpContext.Current.Session.Add("UserId" , null);
      }

Then when application starting your session will be created. and then session will be not isNewSession 'True' , otherwise it will be always 'True'

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Session.isnewsession ASP.Net session issue c#, ASP.net with MVC 5.0 - issue with Google Authentication ASP.NET Core MVC Google Auth Logout issue CORS Issue with Google OAuth ASP.NET MVC sample code Enabling Session State in ASP.NET MVC Session variable in ASP.NET MVC End the session in ASP.NET MVC explicitly ASP.NET MVC Session State Timeout Session TimeOut is not working asp.net mvc
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM