asp.net mvc - How can two ASP.NET_SessionId cookies suddenly appear in the Cookie list? -
i having (very) intermittent issue in production system whereby user session timeout message while navigating 1 page (the timeout set 20 minutes in web.config file, happens between requests within 30 seconds).
i managed fiddler session of 1 of these timeouts , discovered request triggered timeout has 2 asp.net session cookies in header. suspect asp.net picking new session id , thinks new session.
here last request okay:
post https://************/****/****/getbenefits http/1.1 x-requested-with: xmlhttprequest accept-language: en-au referer: https://********/****/****/****/eabacef3-3fc1-4c7a-a2f9-6b13294cae0d accept: application/json, text/javascript, */* content-type: application/x-www-form-urlencoded accept-encoding: gzip, deflate user-agent: mozilla/4.0 (compatible; msie 6.0; windows nt 5.1; sv1; .net clr 2.0.50727; .net clr 1.1.4322; .net clr 3.0.4506.2152; .net clr 3.5.30729) host: ******** content-length: 272 connection: keep-alive cache-control: no-cache cookie: __utma=234635549.1047786296.1290759252.1290759252.1291100928.2; __utmz=234635549.1291100928.2.2.utmcsr=localhost:1600|utmccn=(referral)|utmcmd=referral|utmcct=/x/****/****/****/a4ae2246-5b3c-42a9-8c43-b6f24f1838d5; sivisitor=mc4xmtaumja0ody3njq1ndawodiumti5mdc1oti1mtgxmw__*; asp.net_sessionid=l0tsk4jwbp1v51mu3f3e4o55; __requestverificationtoken_lw__=jqfrynfidns1wc6afwqp5wvsahqdipjzgrd/ifffazbujbjx/edrxokuybzvnkarajd1ubu6ckfitp1t0gi9rluu8miiemt2wkf0pnjhia5dnzmnrf7phlrpdf0zn8qchgbd3w== <content removed>
this contains 1 session entry: asp.net_sessionid=l0tsk4jwbp1v51mu3f3e4o55;
the message returns session timeout one:
post https://********/****/****/updateproductcosts http/1.1 x-requested-with: xmlhttprequest accept-language: en-au referer: https://********/****/****/****/eabacef3-3fc1-4c7a-a2f9-6b13294cae0d accept: text/html, */* content-type: application/x-www-form-urlencoded accept-encoding: gzip, deflate user-agent: mozilla/4.0 (compatible; msie 6.0; windows nt 5.1; sv1; .net clr 2.0.50727; .net clr 1.1.4322; .net clr 3.0.4506.2152; .net clr 3.5.30729) host: ******** content-length: 351 connection: keep-alive cache-control: no-cache cookie: __utma=234635549.1047786296.1290759252.1291100928.1291267008.3; __utmz=234635549.1291100928.2.2.utmcsr=localhost:1600|utmccn=(referral)|utmcmd=referral|utmcct=/x/****/****/****/a4ae2246-5b3c-42a9-8c43-b6f24f1838d5; sivisitor=mc4xmtaumja0ody3njq1ndawodiumti5mdc1oti1mtgxmw__*; asp.net_sessionid=0tluyjvt4dgroov05xqalg55; __utmb=234635549.1.10.1291267008; __utmc=234635549; asp.net_sessionid=l0tsk4jwbp1v51mu3f3e4o55; __requestverificationtoken_lw__=jqfrynfidns1wc6afwqp5wvsahqdipjzgrd/ifffazbujbjx/edrxokuybzvnkarajd1ubu6ckfitp1t0gi9rluu8miiemt2wkf0pnjhia5dnzmnrf7phlrpdf0zn8qchgbd3w== <content removed>
this contains 2 session entries: asp.net_sessionid=0tluyjvt4dgroov05xqalg55; asp.net_sessionid=l0tsk4jwbp1v51mu3f3e4o55;
this, in itself, strange me.
what know why second session id appearing. how happen , how can fix it?
the application asp.net mvc 1.0 based web site.
any ideas or answers welcome!
cheers, adrian.
use iecookieviewer or firebug determine if cookies both same directory. cookie can root (or upper) directory , current application. cookie mgmt programs should you.
Comments
Post a Comment