Friday, July 15th, 2005

Update User’s Session with Ajax

Category: Examples

Eric Pascarello has written both a JSP and ASP backed version of a user session tracker using Ajax. His aim, is to enable users not to get timed out.

His article goes through the Ajaxian code, and both server side pieces.

ajaxTimeoutConfirm.jpg

Posted by Dion Almaer at 1:47 pm
1 Comment

++---
2.7 rating from 9 votes

1 Comment »

Comments feed

The purpose of session time-outs are for security reasons, so that an active session id is killed with a certain period of inactivity incase the local machine is hijacked or so that the session is not intercepted. Extending the session just by pressing ‘ok’ and using Ajax to renew it sort of defeats the purpose of the timeout – after a session timeout the user should have to re-authenticate.

Comment by Nik Cubrilovic — July 24, 2005

Leave a comment

You must be logged in to post a comment.