locked
Passing Session ID as a parameter to WCF service to maintain session state. RRS feed

  • Question

  • User216680051 posted

    Hello. In the pursuit to maintain session state in different types of eviroments beside asp.net, eg: javascript, I was thinking to pass the client session id as a parameter to the WCF service in order to solve this problem, is that usual? I was wondering if there are better ways to maintain session states and which security mesures I should take to avoid session hijacking? 

    Thank you very much and happy year's eve.

    Monday, December 24, 2012 6:46 PM