Change SessionState in cookieless ASP.NET app as to drop session id redirect -

-

Our company uses an ASP.NET webapp, which I need to integrate with an external identifier. For this, authentication traffic redirects the handler in some cases, which refers to some external libraries for the interpretation of authentication requests from the identity provider.

Therefore, in cases where handler code should be used for communication with the identity provider, it is done in the Redirectional Global Application_BeginRequest, slightly like this:

Feedback. Redirect (tempUrl & amp; "/ auth /" & Company name & amp; "/login.ashx")

The problem is that the position of the session is to capsize in the root web Is set as. Configure this way:

& lt; SessionState mode = "InProc" [snip] cookieless = "true" />

This means that the redirects are themselves caught and re-scheduled with the session ID has been redirected. A request from the login.ashx handler is sent to the external identification provider on a URL, which authenticates and returns POST as a response to a very handler URL, meaning "session". Then, POST is redirected to GET, its form snatches the feedback from the data, so the authentication can not go forward, the request is again sent back to the identity provider in an inherent loop.

Therefore, we have to stop the session session for the special controller. We have examined several options

First of all, the EnableSessionState attribute, unfortunately, can not be used on handler page directives.

Again, we tried to change the behavior of the session's session by catching and disabling the special URL and it is in Global.ASACX. Epalingic EngineerWest, similarly:

HTTPCTEx.Content.SetestationStatebyvair (system web.SessionState.SessionStatebyWirelessDenate)

It seemed to work at a level To do this, but not anymore, we are not sure why

we have also tried to see whether "cookies" can be dynamically changed, but related fields can be changed only by- Appears to be readable.

We have a separate web in the "auth" folder. Confessed and tried to set Kukkura right there, but he was not allowed.

We can catch the reaction and see if what is being redirected to Application_EndRequest and wondering whether the redirection and session ID entry can be stopped for a particular URL, but we believe How is that not? Does anyone have any suggestions? We are running out of ideas ...

We explained this by converting subfolders into question A virtual application in IIS and it's your web Tell the config, where the cuckoo can be closed.

Comments

Post a Comment

Popular posts from this blog

java - ImportError: No module named py4j.java_gateway -

-
I'm trying to call the Python using the Java program py4j . I've been installing the plug-in Eclipse and test name Piidvi project. I'm trying to execute the following part of the code found on py4j webpage: Import from py4j.java_gateway to JavaGateway, java_import gateway = JavaGateway () jvm = gateway.jvm java_import (jvm, '' Org.eclipse Kkorkrisorsej. * ") Vrkspes_rut = Jvankresourkesplginkgetvrkspas (). GetRoot (Gateway .help (workspace_root, '* Projects *') project_names = [project.getName () (for projects workpace_root.getProjects))] print (Projekt_nam) But I There is an error in import. I have checked that the P4JJ is present in the Jar Eclipse plugin directory. Can anyone help please? I had to install the py4j application
Read more

python - Receiving "KeyError" after decoding json result from url -

-
I am new to Python I am trying to parse JSON result from a URL. Basically, I was using the following: response = urllib.request.urlopen (url) json_obj = json.load (response) It should be a stroke "str 'not' bytes' in the lines of a given" JSON object, so after searching on the StackoverView Flo, I decode the response in this way: F = urllib.request.urlopen (Url) charset = f.info (). Get_param ('charset', 'utf8') data = f.read () decoded = json.loads (data.decode (charset)) If I print "decode" I is as follows: { 'link': { 'summary data': 'https: // localhost / piwebapi / streams / p0_7qHaW4UHU-RlCaz8tpasAAQAAAAU0hJTExNQU42NDIwXFNJTlVTT0lE / summary' 'value': 'https: // localhost / Piwebapi / streams / P0_7qHaW4UHU-RlCaz8tpasAAQAAAAU0hJTExNQU42NDIwXFNJTlVTT0lE / price ',' InterpolatedData ':' https: // localhost / Piwebapi / streams / P0_7qHaW4UHU-RlCaz8tpasAAQAAAAU0hJTE...
Read more

.net - Creating a new Queue Manager and Queue in Websphere MQ (using C#) -

-
"itemprop =" text "> I am writing applications that use WebSphere MQ to send messages. My unittests (for flow), I want to verify that I have put the correct message on the response queue. I am trying to figure out how to do this. My main obstacle is that I think it might be scary to clear the queue before running in my queue because the same queue can be used by other applications, I thought a decent solution would be a new line The manager will remove the queue for my solidarity and after using it. So my question is: Is it possible to use C # by using queue manager and queue? After the For future reference and future people, who want to make queues. I thought how to make and remove IBM MQ QE (not quenhers) with PCM messaging. It is not very simple, but it can be done. We have implemented it in a library and it is being used to create and delete commands before and after integration tests. The most important part of the code in this library is shown in the...
Read more