c# - Trying to separate sessions for MVC apps -


we working on c# mvc project has 2 mvc uis, frontend , admin section. we're using iis express debugging locally. when debugging both apps, can see values both apps shared in session.

i modified our myapp.vs\config\applicationhost.config , added app pool section each app, , set them use it, this:

<sites>     <site name="website1" id="1" serverautostart="true">         <application path="/">             <virtualdirectory path="/" physicalpath="%iis_sites_home%\website1" />         </application>         <bindings>             <binding protocol="http" bindinginformation=":8080:localhost" />         </bindings>     </site>     <site name="myapp.frontend" id="2">         <application path="/" applicationpool="myappfrontendapppool">             <virtualdirectory path="/" physicalpath="c:\users\myname\source\repos\myapp\myapp.frontend" />         </application>         <bindings>             <binding protocol="http" bindinginformation="*:51415:localhost" />         </bindings>     </site>     <site name="myapp.admin" id="5">         <application path="/" applicationpool="myappadminapppool">             <virtualdirectory path="/" physicalpath="c:\users\myname\source\repos\myapp\myapp.admin" />         </application>         <bindings>             <binding protocol="http" bindinginformation="*:58534:localhost" />         </bindings>     </site>     <sitedefaults>         <logfile logformat="w3c" directory="%iis_user_home%\logs" />         <tracefailedrequestslogging directory="%iis_user_home%\tracelogfiles" enabled="true" maxlogfilesizekb="1024" />     </sitedefaults>     <applicationdefaults applicationpool="clr4integratedapppool" />     <virtualdirectorydefaults allowsubdirconfig="true" /> </sites>

however, still see variables both apps in session.

how can ensure each app works in it's own, separate, session?

sessions in asp.net have client-side component (cookie), , ability app read cookie (and restore session) depends on 3 factors:

  1. the ability receive cookie in first place. cookies domain-bound, if both sites running on localhost, example, each receive each other's cookies. however, not issue if deployed foo.com , bar.com.

  2. the ability decrypt cookie. controlled machine key being used app. default, asp.net generate single machine key system , use everything, allows apps on machine read each other's cookies. disable this, should give each application own explicit , distinct machine key.

  3. finally, cookie name. cookie used persisting session state customizable per application, defaults standard name of asp.net_sessionid. obviously, if both sites using same cookie name sessions, share that. therefore, direct way separate sessions applications assign each unique session cookie name.

    <system.web>     <sessionstate cookiename="foo" /> </system.web>

Comments

Post a Comment

Popular posts from this blog

python Tkinter Capturing keyboard events save as one single string -

is possible store keyboard events 1 string? code below stores 1 char , prints it. card reader or bar code reader, contains collection of character/ string not 1 character @ time. goal save char pressed text variable. from tkinter import * root = tk() def key(event): text= event.char text+= event.char print ("pressed", text) def callback(event): frame.focus_set() print ("clicked at", event.x, event.y) frame = frame(root, width=100, height=100) frame.bind("<key>", key) frame.bind("<button-1>", callback) frame.pack() root.mainloop() currently, creating text variable , everytime key() function gets called, , text stores last character typed. you can define text module level variable , , use module level text inside key function - text = '' def key(event): global text text+= event.char print("pressed", text)
Read more

android - InAppBilling registering BroadcastReceiver in AndroidManifest -

i'm implementing inapp billing in android app. works well, however, i'm trying decouple broadcast receiver activity manifest. suggestion in android's trivialdrive sample: // important: dynamically register broadcast messages updated purchases. // register receiver here instead of <receiver> in manifest // because call getpurchases() @ startup, therefore can ignore // broadcasts sent while app isn't running. // note: registering listener in activity bad idea, done here // because sample. regardless, receiver must registered after // iabhelper setup, before first call getpurchases(). currently there's class extends broadcastreceiver : public class iabbroadcastreceiver extends broadcastreceiver { /** * intent action receiver should filter for. */ public static final string action = "com.android.vending.billing.purchases_updated"; private final iabbroadcastlistener mlistener; public iabbroadcastreceiver(iabbroadcastlistener listener) { m
Read more

javascript - Z-index in d3.js -

i have map , when hover effect on region of map below yellow line , circle, last ones disappear. how can solve problem? http://jsfiddle.net/ot21n9qx/ var arc = g.append("path") .style("fill", "none") .style("stroke", "yellow") .style("stroke-width", 2) .attr("d", "m" + pathorigin[0] + "," + pathorigin[1] + " q" + svgpoint[0] + "," + pathorigin[1] + " " + svgpoint[0] + "," + svgpoint[1]); var circlesize = d3.scale.linear() .domain([0, 0.5, 1]) .range([4, 10, 4]); svg not have z order draws objects in order created. need create path , circle after create highlight regions. here forked fiddle: http://jsfiddle.net/o00fzgaf/1/
Read more