Managing Sessions in ASP

This section describes how sessions work in ASP applications, and how you can create and manages sessions.

One of the challenges to developing a successful Web application is maintaining user information over the course of a visit, or session, as the user travels from page to page in an application. HTTP is a stateless protocol, meaning that your Web server treats each HTTP request for a page as an independent request; the server retains no knowledge of previous requests, even if they occurred only seconds prior to a current request. This inability to remember previous requests means that it is this difficult to write applications, such as an online catalog, where the application may need to track the catalog items a user has selected while jumping between the various pages of the catalog.

ASP provides a unique solution for the problem of managing session information. Using the ASP Session Object object and a special user ID generated by your server, you can create clever applications that identify each visiting user and collect information that your application can then use to track user preferences or selections.

ASP assigns the user ID by means of an HTTP cookie, which is a small file stored on the client's computer. So, if you are creating an application for browsers that do not support cookies, or if your customers might set their browsers to refuse cookies, you should not use ASP's session management features.

This section includes the following topics:

• Starting and Ending Sessions in ASP

• Storing and Removing Data from the ASP Session Object

• Managing Sessions Across Multiple IIS Servers

• Using Cookies to Maintain Sessions in ASP

• Creating Sessionless ASP Pages

• Maintaining Session State with Cookies

• Maintaining Session State Without Cookies