Explaination: This code checks your POST (form) and GET (querystring) for a Session ID. If it finds _disibledevent=>" } /* lots more settings */ }); Note: The overriding of the Forms Authentication cookie has not been tested but I think it should still work. Someone will have to let me know. P.S. & Security Warning: Don't just copy and paste this code in to your ASP.Net application without knowing what you are doing. It introduces security issues and possibilities of Cross-site Scripting.
1 void Application_BeginRequest(object sender, EventArgs e) 2 { 3 /* Fix for the Flash Player Cookie bug in Non-IE browsers. 4 * Since Flash Player always sends the IE cookies even in FireFox 5 * we have to bypass the cookies by sending the values as part of the POST or GET 6 * and overwrite the cookies with the passed in values. 7 * 8 * The theory is that at this point (BeginRequest) the cookies have not been ready by 9 * the Session and Authentication logic and if we update the cookies here we'll get our 10 * Session and Authentication restored correctly 11 */ 12 try 13 { 14 string session_param_name = "ASPSESSID"; 15 string session_cookie_name = "ASP.NET_SESSIONID"; 16 if (HttpContext.Current.Request.Form[session_param_name] != null) 17 { 18 UpdateCookie(session_cookie_name, HttpContext.Current.Request.Form[session_param_name]); 19 } 20 else if (HttpContext.Current.Request.QueryString[session_param_name] != null) 21 { 22 UpdateCookie(session_cookie_name, HttpContext.Current.Request.QueryString[session_param_name]); 23 } 24 } 25 catch (Exception) 26 { 27 } 28 try 29 { 30 string auth_param_name = "AUTHID"; 31 string auth_cookie_name = FormsAuthentication.FormsCookieName; 32 if (HttpContext.Current.Request.Form[auth_param_name] != null) 33 { 34 UpdateCookie(auth_cookie_name, HttpContext.Current.Request.Form[auth_param_name]); 35 } 36 else if (HttpContext.Current.Request.QueryString[auth_param_name] != null) 37 { 38 UpdateCookie(auth_cookie_name, HttpContext.Current.Request.QueryString[auth_param_name]); 39 } 40 } 41 catch (Exception) 42 { 43 } 44 } 45 void UpdateCookie(string cookie_name, string cookie_value) 46 { 47 HttpCookie cookie = HttpContext.Current.Request.Cookies.Get(cookie_name); 48 if (cookie == null) 49 { 50 HttpCookie cookie1 = new HttpCookie(cookie_name, cookie_value); 51 Response.Cookies.Add(cookie1); 52 } 53 else 54 { 55 cookie.Value = cookie_value; 56 HttpContext.Current.Request.Cookies.Set(cookie); 57 } 58 }
另外membership也是同过cookie的,在FF中上传也会丢失,导致没有权限不能上传
解决办法:
1 try 2 { 3 string membership_param_name = "MEMBER_ASPROLES"; 4 string membership_cookie_name = ".ASPROLES"; 5 6 if (HttpContext.Current.Request.Form[membership_param_name] != null) 7 { 8 UpdateCookie(membership_cookie_name, HttpContext.Current.Request.Form[membership_param_name]); 9 } 10 else if (HttpContext.Current.Request.QueryString[membership_param_name] != null) 11 { 12 UpdateCookie(membership_cookie_name, HttpContext.Current.Request.QueryString[membership_param_name]); 13 } 14 15 } 16 catch (Exception) 17 { 18 }
最新评论