Pramod Verma
Where Session ID Stores in Asp.net?
By Pramod Verma in ASP.NET on Feb 05 2015
  • Pankaj  Kumar Choudhary
    Feb, 2015 20

    Session Data is always stored in Server(May be store in sqlserver or Out of Proc depend upon your choice ) and Server always generate a Session Id for each session this id by default store in user's memory in form of Cookie.This Cookie is only set of Characters like 'lin8py55t21z5v65vlm25s55' . If cookie are disabled then session id will attach with Url. Url without Cookie: http://www.Indiaonline.com/page.aspx Url with Cookie : http://www.Indiaonline.com/(S(lin8py55t21z5v65vlm25s55))/page.aspx This Method is not good because some user can save this url as Bookmarks.Then it will generate problems

    • 5
  • Sathiswaran
    Mar, 2015 14

    1)Inprocess(Inproc)-when cookieless false it is stored in client machine using cookie.If it false,it will maintain the session id throw the url 2)Outprocess-State server-In this mode stored on the state server Sqlserver mode-During this the session storrage happens on sql server Among all sqlserver mode is best .

    • 3
  • Navin Kumar
    Feb, 2015 27

    Session id store in different location as per session mode selected. 1 For InProc mode it store in cookie. 2 Fro state server it store in sate server 3 For Database it store in db

    • 2
  • Kml Surani
    Apr, 2015 15

    SP.NET by default uses a cookie; but can be configured to be "cookieless" if you really need it; which instead stores your Session ID in the URL itself. This typically has several disadvantages; such as maintence of links become difficult, people bookmarking URLs with expired session IDs (so you need to handle expired session IDs, etc). Most modern phones, even non-smart phones, support cookies. Older phones may not. Whether you need to support cookieless sessions is up to you.

    • 1
  • Pramod Verma
    Feb, 2015 5

    Session ID stores in cookies. If Cookies is disabled than attach with url.

    • 1
  • Vishnu Gh
    Mar, 2018 29

    Session["user"]=Convert.ToString(Name_txt.Text);

    • 0
  • Mukesh Kumar
    Sep, 2017 12

    In browser like a key

    • 0
  • Keerthi Venkatesan
    May, 2016 13

    In server

    • 0
  • Ankit Kanojia
    Dec, 2015 23

    1> InProc mode, which stores session state in memory on the Web server.2> StateServer mode, which stores session state in a separate process called the ASP.NET state service. 3> SQLServer mode stores session state in a SQL Server database. You can also store tour session id as Custom mode, which enables you to specify a custom storage provider

    • 0
  • maulik patel
    Nov, 2015 3

    Session Id store on server side. In proc - store in application domain Out Proc - store in Sql server database

    • 0
  • Francis
    Oct, 2015 22

    If you are using "InProc" mode of session handling, then SessionID id can be stored in 2 places based on the configuration in "Web.Config". 1) <sessionState mode="InProc" cookieless="true"> </sessionState> In the above config line, we set "cookieless=true", at this case the session id will be stored in URL itself. So the user can easily view the session id, which is vulnerable one.Ex: http://localhost:57913/(S(5a1v1hngmwbfn54wl5jdlmp3))/WebForm1.aspx2) <sessionState mode="InProc" cookieless="false"> </sessionState> As per the above line, the session id will be stored in Cookie with the name "ASP.NET_SessionId".

    • 0
  • Praveen Dhatrika
    Oct, 2015 16

    It could be in 3 forms InProc, State Server SQL ServerClick here to See more http://csharp-video-tutorials.blogspot.com/2012/12/inporc-aspnet-session-state-mode.html

    • 0
  • Vamsi Krishna
    Oct, 2015 7

    Session id stored in different location as per we select mode in webconfig 1)InProc -it is stored in client machine cookies 2)State server -it is stored Seperate server for allotted session 3)sqlserver-it is stored sql server

    • 0
  • Narasimha Reddy Chennupalli
    Jun, 2015 25

    In Asp.Net sessions can strore in 3 places its regularly called as session modes. 1. In-Proc : Stores at cookies 2. Out-Proc: Stores at State server 3. InOut-Proc: Stores at Sql serverIn Asp.Net sessions are by default in In-Proc mode that means Sessions are stores at Cookies.

    • 0
  • Sujeet Suman
    Jun, 2015 18

    Sessions are identified by a unique identifier that can be read by using the SessionID property. It depends upon session mode selection: InProc mode - Cookie. OutProcess state server mode - Sate Server SQLServer mode - Database Custom mode - Custom providerBy default, SessionID values are stored in a cookie. However, you can also configure the application to store SessionID values in the URL for a "cookieless" session.

    • 0
  • Vaibhav Salwe
    May, 2015 30

    Hello Pramod,Session ID is stored either in Cookie or in URL. This is depend on the cookieless property you have mention infor this setting Session ID store appear in URL.it will store in cookie. And by default it will store in cookie.for detailing please referehttps://msdn.microsoft.com/en-us/library/h6bb9cz9%28v=vs.71%29.aspx

    • 0
  • Kiranteja Jallepalli
    May, 2015 25

    cookies

    • 0
  • Kml Surani
    May, 2015 8

    By Default Session Id is Stored in Client m/c in the form of text file.It is Called Cookie. If session is Cookie less the that is append to Url .

    • 0
  • Debendra Dash
    Apr, 2015 19

    Browser cookies

    • 0
  • BhakthaprahladaReddy N
    Apr, 2015 14

    In Cookies. If it is cookies less means it will come in the URL it self.

    • 0
  • BhakthaprahladaReddy N
    Apr, 2015 14

    In Cookies. If it is cookies less means it will come in the URL it self.

    • 0
  • Munesh Sharma
    Mar, 2015 30

    http://dotnet-munesh.blogspot.in/2014/02/session-in-dot-net.html

    • 0
  • saravanagopi s
    Feb, 2015 19

    0 Points8 Posts Re: cookieless="false" in sessionStateSep 20, 2006 09:37 PM|LINK If your application using sessions definitely it needs a sessionid. so that it can find and retrieve the session data in the store (and save to it). SessionID property : 1. Its used to uniquely identify a browser with session data on the server. 2. The SessionID value is randomly generated by ASP.NET and stored in a non-expiring session cookie in the browser. 3 .The SessionID value is then sent in a cookie with each request to the ASP.NET application.Default Value of Session Cookieless = false. By default this id is stored on a cookie. If you set cookieless=true then it will store the id in the url. (For ex) : In web.config if you write this code your URL looks like http://ABC.com/(session ID here)/default.aspx

    • 0


Most Popular Job Functions


MOST LIKED QUESTIONS