Thread: session problem
View Single Post
  #2 (permalink)  
Old October 4th, 2007, 02:27 AM
Imar's Avatar
Imar Imar is offline
Wrox Author
Points: 70,322, Level: 100
Points: 70,322, Level: 100 Points: 70,322, Level: 100 Points: 70,322, Level: 100
Activity: 0%
Activity: 0% Activity: 0% Activity: 0%
 
Join Date: Jun 2003
Location: Utrecht, Netherlands.
Posts: 17,089
Thanks: 80
Thanked 1,576 Times in 1,552 Posts
Default

Quote:
quote:the sessoin value lost as my application is redirected to payment gateway web site and when it return to my application session values lost.
Is that an assumption? Or a test outcome?

AFAIK, if you're using cookies based sessions, you can safely go to another site, return to the initial page and still have a valid session.

If you are using session identifiers in the querystirng, then you're out of luck with that solution.

However, you can often instruct payment gateways to send some identifier, like an order number in the query string. You can then look up that number in your database and find the associated user again.

Finally, you can store data in a cookie. Not secure, but it might work for you.

Cheers,

Imar

---------------------------------------
Imar Spaanjaars
http://Imar.Spaanjaars.Com
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004