943,787 Members | Top Members by Rank

Software Development > C# > Deleting session id's created by browsers on server's
Ad:
  • C# Discussion Thread
  • Unsolved
  • Views: 796
  • C# RSS
Permalink
Aug 13th, 2009
0

Deleting session id's created by browsers on server's

Expand Post »
Hi,



I am having a web application, which can be accessed by different users based on their userid's and passwords.



Now I want to prevent users from accessing the application from more than one system.

In order to prevent this I have created a table with three columns as :

userid password flag



with flag having two values (true, false)

true means that user is logged in

false means looged off





session id generated by the server when the session is created

SESSION.SESSIONID gets the id generated on the IIS.

reference: http://msdn.microsoft.com/en-us/library/ms524326.aspx



now how can I delete it?

so that there can be only one user per user id.
In short I want to implement a feature used by gmail where one user can expire or log out all other users on different machines using same user id's.
am I right in achieving the goal?

I don't want to use Asp.net MembershipProvider.



thanks

Shankbond
Similar Threads
Reputation Points: 10
Solved Threads: 0
Light Poster
shankbond is offline Offline
31 posts
since Jun 2009
Permalink
Aug 13th, 2009
0

Re: Deleting session id's created by browsers on server's

Quote ...
In short I want to implement a feature used by gmail where one user can expire or log out all other users on different machines using same user id's.
you can do this by having a table(say login_detail) in server with column:
UserId, ClientSessionValue

When ever user login, store unique cookie(ClientSessionValue) in browser as well as in login_detail table. so if user is going to login from 3 machine, store his id 3 times against the 3 different ClientSessionValue in data base table.

So when ever user want to logout from a machine, delete one row from login_detail of corresponding ClientSessionValue.

When ever any request will come from client it will come with ClientSessionValue cookie. so if this value is not present against that user means, that user is logged out of that machine.

Now, if user want to expire or log out all other login from different machines, just delete all rows except one row from where delete request has come.
Reputation Points: 165
Solved Threads: 59
Posting Pro in Training
DangerDev is offline Offline
485 posts
since Jan 2008
Permalink
Aug 13th, 2009
0

Re: Deleting session id's created by browsers on server's

Click to Expand / Collapse  Quote originally posted by DangerDev ...
When ever any request will come from client it will come with ClientSessionValue cookie. so if this value is not present against that user means, that user is logged out of that machine.

.
How am I going to delete that client session value?
that is what I am trying to know ?
any help shall be appreciated
thanks
Reputation Points: 10
Solved Threads: 0
Light Poster
shankbond is offline Offline
31 posts
since Jun 2009

This thread is more than three months old

No one has posted to this discussion for at least three months. Please let old threads die and do not reply to them unless you feel you have something new and valuable to contribute that absolutely must be added to make the discussion complete. Otherwise, please start a new thread in this forum instead.
Message:
Previous Thread in C# Forum Timeline: suggestions for first moderately ambitious application?
Next Thread in C# Forum Timeline: Time in C#





About Us | Contact Us | Advertise | Acceptable Use Policy
Forum Index | Build Custom RSS Feed


Follow us on Twitter


© 2011 DaniWeb® LLC