1. Home

Product groups

Support

Clarification on Session ID - WeOnlyDo Discussion board

Clarification on Session ID (wodWebServer / wodWebServer.NET)

by Kishore, Wednesday, December 20, 2023, 17:17 (129 days ago)

Team, we are using the WebServer component for a VB6 project.

I have a couple of queries regarding the session management in the WOD Session, which I hope you can help clarify:

I've noticed that session IDs are generated as soon as the web server is initiated. Could you shed some light on the purpose of this? Typically, I would expect the WOD session ID to be created after successful user authentication, and I'm curious to understand the rationale behind the current approach.

Additionally, I observed that session IDs are being reused. Is this the default behavior, and if so, what measures are in place to prevent any associated security risks? I'm keen to ensure that session IDs are unique for each session, especially after user authentication.

Any insights or guidance on these aspects would be greatly appreciated.
Thanks
Kishore

locked
  980 views

Clarification on Session ID

by Jasmine, Wednesday, December 20, 2023, 17:28 (129 days ago) @ Kishore

Hi.

Session is created first time you add User.Sessions variable, not before that. It has nothing to do with authentication, which is just one usage of it. You can store many other types of information besides authentication.

As for its uniqueness, it should be unique, since it contains time and session ID inside, both are time-frame unique.

Regards,
Jasmine

locked
  980 views

We are having great success with your component ... email server that has over 750 000 mailboxes back ended by a SQL server...

Conrad Leigh
Leaf Wireless

May I say how nice it is to work with components so complete and self-explanatory that using them in my application is as instinctive as though I wrote them myself?

Michael Barnett
Full Spectrum Telecommunications

May I say how nice it is to work with components so complete and self-explanatory that using them in my application is as instinctive as though I wrote them myself?

Michael Barnett
Full Spectrum Telecommunications

WeOnlyDo!COM will be the first stop I make should I require any further off-the-shelf components.

Dean Keigan
RBC Capital Markets

Just thought you'd like to know that my gateway app with your SMTP Server component held the line against a DDOS attack today...

Chris Langsenkamp
Clever Technologies

...your service has been phenomenal. It's always quick and you are there when I need you.

James Newman
Castleberry Investments

Thank you so much for your hard work and commitment in producing well thought-out solutions. WeOnlyDo is very committed to customer satisfaction!

Mike McPherson
Nokia Inc.

...with the SFTP interface you produced, everything was so simple to understand, we were able to start coding almost immediately!

Zack Menendez
Mapframe Corporation

You made it so simple for us to integrate SFTP - a technology we had little experience with...

Zack Menendez
Mapframe Corporation

It is very refreshing to find such helpful, knowledgeable and quick responding technical support.

Jason Sears
CompuSource Systems, Inc.