I posted this in another forum, maybe I have better luck here:
I have a website running in IIS7 and it seems to be creating a new session for every request I make. The values I store in Session are lost with every request.
I have reduced the security levels to a minimum and the browser has no problems accepting cookies from other sites. In fact it accepts cookies from my same website when hosted in a Windows Server 2003 with II6. Furthermore, the site works fine in Firefox
and Opera but not in IE or Safari.
And session state is configured in IIS as
In Process
Use Cookies
Time out = 10 minutes
Use hosting identity for impersonation
I have run a trace for both IE7 and Firefox 3, and the results are a bit different, hopefully this will highlight some clues. I have run a quick test, I have a page that shows a list of products
in a gridview, then the user would select a couple, hit a button and see those products selected in a details page. The products are stored in session so the details page knows which ones were selected.
The obvious things I notice are:
- In IE, the session id changes with each request whicle in Firefox stays the same (this is good) hence the IsNew value for IE is true while Firefox keeps it false (same session).
- In IE the request cookies remain empty, while in Firefox I can see the cookie I specified in web.config (MyCookie)
- However Firefox has empty Response cookies, while IE stores some values. This however is not stopping Firefox from workimng fine.
-PRODUCTLIST is a session variable that remains empty in IE while Firefox shows the products selected
- IE is adding a lot of crap to the url while Firefox keeps it clean.
Any ideas highly appreciated, this is getting desperate. EnableSessionState is true (default). Everything works fine in Windows Server 2003 and IIS6.
Thanks
IE7, PRODUCTS LIST
************************************************** *************************
Request Details
Session Id: 5ndmre45eef30w5513xwla55
diholaiis
58 Posts
Windows Server 2008/IIS7 vs IE: No session information maintained, due to problems with cookies
Jul 02, 2008 09:36 AM|LINK
Hi,
I posted this in another forum, maybe I have better luck here:
I have a website running in IIS7 and it seems to be creating a new session for every request I make. The values I store in Session are lost with every request.
I have reduced the security levels to a minimum and the browser has no problems accepting cookies from other sites. In fact it accepts cookies from my same website when hosted in a Windows Server 2003 with II6. Furthermore, the site works fine in Firefox and Opera but not in IE or Safari.
This is the forms bit in my web.config:
<authentication mode="Forms">
<forms name=".ReMaCRM" loginUrl="~/Login.aspx" defaultUrl="~/Default.aspx" cookieless="AutoDetect" domain="" timeout="10" protection="All" />
</authentication>
And session state is configured in IIS as
In Process
Use Cookies
Time out = 10 minutes
Use hosting identity for impersonation
I have run a trace for both IE7 and Firefox 3, and the results are a bit different, hopefully this will highlight some clues. I have run a quick test, I have a page that shows a list of products
in a gridview, then the user would select a couple, hit a button and see those products selected in a details page. The products are stored in session so the details page knows which ones were selected.
The obvious things I notice are:
- In IE, the session id changes with each request whicle in Firefox stays the same (this is good) hence the IsNew value for IE is true while Firefox keeps it false (same session).
- In IE the request cookies remain empty, while in Firefox I can see the cookie I specified in web.config (MyCookie)
- However Firefox has empty Response cookies, while IE stores some values. This however is not stopping Firefox from workimng fine.
-PRODUCTLIST is a session variable that remains empty in IE while Firefox shows the products selected
- IE is adding a lot of crap to the url while Firefox keeps it clean.
Any ideas highly appreciated, this is getting desperate. EnableSessionState is true (default). Everything works fine in Windows Server 2003 and IIS6.
Thanks
IE7, PRODUCTS LIST
************************************************** *************************
Request Details
Session Id: 5ndmre45eef30w5513xwla55
PRODUCTLIST=---
COOKIELESS=False
ISNEW=True
MODE=InProc
SESSIONID=5ndmre45eef30w5513xwla55
TIMEOUT=10
COOKIEMODE=UseCookies
Request Cookies Collection
<Empty>
Response Cookies Collection
ASP.NET_SessionId 5ndmre45eef30w5513xwla55 42
CurrLanguage 6
Headers Collection
Connection Keep-Alive
Referer http://mywebsite/(X(1)F(-ewRO3icZtByyRBJbZuhOnOj_5Se-UBrWkMnJzOElOK71P6hfWDg60I7jFOlafyb9-khfm76UqZNxNttnb9DpN-m-84_3-r3TlSJgEFxiPw1))/Default.aspx
User-Agent Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.04506; .NET CLR 3.5.21022; InfoPath.2)
UA-CPU x86
AspFilterSessionId X(1)F(-ewRO3icZtByyRBJbZuhOnOj_5Se-UBrWkMnJzOElOK71P6hfWDg60I7jFOlafyb9-khfm76UqZNxNttnb9DpN-m-84_3-r3TlSJgEFxiPw1)
Response Headers Collection
X-AspNet-Version 2.0.50727
Set-Cookie ASP.NET_SessionId=5ndmre45eef30w5513xwla55; path=/; HttpOnly
Set-Cookie CurrLanguage=6; expires=Tue, 30-Jun-2009 15:33:09 GMT; path=/
Cache-Control private
Content-Type text/html
IE, SHOWS 2 PRODUCTS SELECTED FORM LIST
************************************************** *************************
Request Details
Session Id: si20jp45n3bvc0zd33vgwpub
PRODUCTLIST=---
COOKIELESS=False
ISNEW=True
MODE=InProc
SESSIONID=si20jp45n3bvc0zd33vgwpub
TIMEOUT=10
COOKIEMODE=UseCookies
Request Cookies Collection
<Empty>
Response Cookies Collection
ASP.NET_SessionId si20jp45n3bvc0zd33vgwpub
CurrLanguage 6
Headers Collection
Cache-Control no-cache
Connection Keep-Alive
Referer http://mywebsite/(X(1)F(-ewRO3icZtByyRBJbZuhOnOj_5Se-UBrWkMnJzOElOK71P6hfWDg60I7jFOlafyb9-khfm76UqZNxNttnb9DpN-m-84_3-r3TlSJgEFxiPw1))/Products.aspx
User-Agent Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.04506; .NET CLR 3.5.21022; InfoPath.2)
UA-CPU x86
AspFilterSessionId X(1)F(-ewRO3icZtByyRBJbZuhOnOj_5Se-UBrWkMnJzOElOK71P6hfWDg60I7jFOlafyb9-khfm76UqZNxNttnb9DpN-m-84_3-r3TlSJgEFxiPw1)
Response Headers Collection
X-AspNet-Version 2.0.50727
Set-Cookie ASP.NET_SessionId=si20jp45n3bvc0zd33vgwpub; path=/; HttpOnly
Set-Cookie CurrLanguage=6; expires=Tue, 30-Jun-2009 15:37:03 GMT; path=/
Cache-Control private
Content-Type text/html
************************************************** *************************
************************************************** *************************
************************************************** *************************
Firefox, PRODUCTS LIST
************************************************** *************************
Request Details
Session Id: 5isfv345keniqw32m1py3t3z
PRODUCTLIST=---
COOKIELESS=False
ISNEW=False
MODE=InProc
SESSIONID=5isfv345keniqw32m1py3t3z
TIMEOUT=10
COOKIEMODE=UseCookies
Request Cookies Collection
CurrLanguage 6
ASP.NET_SessionId 5isfv345keniqw32m1py3t3z
MyCookie CFFBB3756BC404FD9771FA01D15856445B6843DAC2476551D4 9850F34648A2D99860BB5FC0259E0848F23EDBB64F3FAA91EA 8E3ABB0A63B1E9F10CF5B27A3A232BEFA8EDEE0D16B0289B27 46F52C4DF0 169
Response Cookies Collection
<Empty>
Headers Collection
Connection keep-alive
Keep-Alive 300
Cookie CurrLanguage=6; ASP.NET_SessionId=5isfv345keniqw32m1py3t3z; .MyCookie=CFFBB3756BC404FD9771FA01D15856445B6843DA C2476551D49850F34648A2D99860BB5FC0259E0848F23EDBB6 4F3FAA91EA8E3ABB0A63B1E9F10CF5B27A3A232BEFA8EDEE0D 16B0289B2746F52C4DF0
Referer http://mywebsite/ProductDetails.aspx
User-Agent Mozilla/5.0 (Windows; U; Windows NT 6.0; en-GB; rv:1.9) Gecko/2008052906 Firefox/3.0
Response Headers Collection
X-AspNet-Version 2.0.50727
Cache-Control private
Content-Type text/htm
Firefox, SHOWS 2 PRODUCTS SELECTED FORM LIST
************************************************** *************************
Request Details
Session Id: 5isfv345keniqw32m1py3t3z
PRODUCTLIST=43808,43794
COOKIELESS=False
ISNEW=False
MODE=InProc
SESSIONID=5isfv345keniqw32m1py3t3z
TIMEOUT=10
COOKIEMODE=UseCookies
Request Cookies Collection
CurrLanguage 6
ASP.NET_SessionId 5isfv345keniqw32m1py3t3z
.MyCookie CFFBB3756BC404FD9771FA01D15856445B6843DAC2476551D4 9850F34648A2D99860BB5FC0259E0848F23EDBB64F3FAA91EA 8E3ABB0A63B1E9F10CF5B27A3A232BEFA8EDEE0D16B0289B27 46F52C4DF0 169
Response Cookies Collection
<Empty>
Headers Collection
Connection keep-alive
Keep-Alive 300
Cookie CurrLanguage=6; ASP.NET_SessionId=5isfv345keniqw32m1py3t3z; .ReMaCRM=CFFBB3756BC404FD9771FA01D15856445B6843DAC 2476551D49850F34648A2D99860BB5FC0259E0848F23EDBB64 F3FAA91EA8E3ABB0A63B1E9F10CF5B27A3A232BEFA8EDEE0D1 6B0289B2746F52C4DF0
Referer http://mywebsite/Products.aspx
User-Agent Mozilla/5.0 (Windows; U; Windows NT 6.0; en-GB; rv:1.9) Gecko/2008052906 Firefox/3.0
Response Headers Collection
X-AspNet-Version 2.0.50727
Cache-Control private
Content-Type text/html
diholaiis
58 Posts
Re: Windows Server 2008/IIS7 vs IE: No session information maintained, due to problems with cooki...
Aug 01, 2008 09:07 AM|LINK
My site name had an underscore character as part of the name, that seemed to be the culprit.
Changed http://my_site for http://my-site
Paul Bishop
3 Posts
Re: Windows Server 2008/IIS7 vs IE: No session information maintained, due to problems with cooki...
Mar 01, 2011 05:34 PM|LINK
in iis 7 there is a setting under asp tab > Session Properties > New id on secure connection > should be false
setting to true will give new session on switch
IIS7