Session C# How does it work?
What is the Lifetime Of A Session in ASP.NET MVC, and how to find out find out the remaining time and how to add more time to the Session (if possible)?
Is there another form of value guard that is more performant?
2 answers
Possibly duplicated? (This link can help you too) What is the difference between Sessions and Cookies?
For web, you can change the value of the timeout session through web.config:
<configuration>
<system.web>
<sessionState timeout="20"></sessionState>
</system.web>
</configuration>
By default, the time is 20 minutes.
As for getting the remaining time to end the session, there are several ways you would have to be more specific about it. One solution would be to control time via javascript. But if you want, why example, redirecting the user after the session ends, you can use HttpContext.Current.User.Identity.IsAuthenticated and do such validation..
EDIT:
No, as far as I know, it is not possible to modify the session time in real time, since we are talking about downtime. You set the maximum downtime, and upon passing that time, the session is terminated.
You can implement a solution to keep your session" alive " indefinitely as well, just "mix" an action in MVC and make the call via jQuery:
[HttpPost]
public JsonResult KeepSessionAlive() {
return new JsonResult {Data = "Success"};
}
What Would a system session be ?
Session is usually used to store user data. It is done this way because the data is on the server, not allowing other users to have access.
You can save your application session in several ways:
Inproc: stores the session state in Web server memory. This is the standard.
StateServer: stores the session state in a separate process called the state service ASP.NET this ensures that the session state is preserved if the Web application is restarted and also makes the session state available to multiple Web servers in a Web farm..
SQLServer: stores the session state in a SQL Server Database. This ensures that the session state is preserved if the Web application is restarted and also makes the session state available to multiple Web servers in a Web farm..
Custom: allows you to specify a usual storage provider..
Off: no session.
Https://msdn.microsoft.com/en-us/library/ms178586.aspx
Depending on your system you will need a different way.
Referring to the life cycle, the user session is deleted when the same unlocks from the system.
I would like to make a caveat, It is not necessary to use Session you can very well store the information in encrypted form in the cookie of the browser.
Follow exelende tutorial by Eduardo Pires MVP
Http://eduardopires.net.br/2015/04/pense-duas-vezes-antes-de-utilizar-sessions /