Sessions - cookieless for non-cookie users only

[Daniel Malcolm]

Hi

I just wanted to confirm that the "cookieless" attribute of the session
section of the web.config file is an "all or nothing" setting.

For some reason I thought that the following was the case:

If "cookieless" is set to false then ...

- If user's browser supports cookies then cookie is used to track Session
state
- If user's browser doesn't support cookies then cookieless mode (session id
added to url) is used to track Session state

but if "cookieless" is set to true then ...

- cookieless mode (session id added to url) is always used to track Session
state


I'm probably wrong though, as I've done a few tests and if I disable cookies
and set cookieless to "false" then Session state cannot be stored.

Thanks

 

[Marina]

Yes, it is an all or nothing set. It is either on, or off - for everyone.

 

[Joerg Jooss]

Hi

I just wanted to confirm that the "cookieless" attribute of the
session section of the web.config file is an "all or nothing" setting.

For some reason I thought that the following was the case:

If "cookieless" is set to false then ...

- If user's browser supports cookies then cookie is used to track
Session state
- If user's browser doesn't support cookies then cookieless mode
(session id added to url) is used to track Session state

[...]

That's how servlet containers work. In ASP.NET, it's "all or nothing".

Cheers,