如何在 ASP.NET 中创建持久性 Cookie?

我创建的 cookie 有以下几行:

HttpCookie userid = new HttpCookie("userid", objUser.id.ToString());
userid.Expires.AddYears(1);
Response.Cookies.Add(userid);

现在我怎样才能让它持久呢?

如果我在关闭浏览器后再次访问同一页面,我将无法获得它。

122303 次浏览
小开

你需要把这个作为最后一行..。

HttpContext.Current.Response.Cookies.Add(userid);

当你需要读取 cookie 的值时,你会使用一个类似的方法:

    string cookieUserID= String.Empty;


try
{
if (HttpContext.Current.Request.Cookies["userid"] != null)
{
cookieUserID = HttpContext.Current.Request.Cookies["userid"];
}
}
catch (Exception ex)
{
//handle error
}


return cookieUserID;
小开
最佳答案

你可以这么做。

编写持久性 cookie。

//create a cookie
HttpCookie myCookie = new HttpCookie("myCookie");


//Add key-values in the cookie
myCookie.Values.Add("userid", objUser.id.ToString());


//set cookie expiry date-time. Made it to last for next 12 hours.
myCookie.Expires = DateTime.Now.AddHours(12);


//Most important, write the cookie to client.
Response.Cookies.Add(myCookie);

读取持久性 cookie。

//Assuming user comes back after several hours. several < 12.
//Read the cookie from Request.
HttpCookie myCookie = Request.Cookies["myCookie"];
if (myCookie == null)
{
//No cookie found or cookie expired.
//Handle the situation here, Redirect the user or simply return;
}


//ok - cookie is found.
//Gracefully check if the cookie has the key-value as expected.
if (!string.IsNullOrEmpty(myCookie.Values["userid"]))
{
string userId = myCookie.Values["userid"].ToString();
//Yes userId is found. Mission accomplished.
}
小开

FWIW 在未加密的 cookie 中存储类似用户标识的内容时要非常小心。这样做会使您的站点非常容易出现 cookie 中毒,而用户可以轻松地模拟其他用户。如果您正在考虑类似的事情,我强烈建议您直接使用 Forms 身份验证 cookie。

bool persist = true;


var cookie = FormsAuthentication.GetAuthCookie(loginUser.ContactId, persist);


cookie.Expires = DateTime.Now.AddMonths(3);


var ticket = FormsAuthentication.Decrypt(cookie.Value);


var userData = "store any string values you want inside the ticket
extra than user id that will be encrypted"


var newTicket = new FormsAuthenticationTicket(ticket.Version, ticket.Name,
ticket.IssueDate, ticket.Expiration, ticket.IsPersistent, userData);


cookie.Value = FormsAuthentication.Encrypt(newTicket);


Response.Cookies.Add(cookie);

然后,您可以在任何时候从 ASP.NET 页面读取这个

string userId = null;
if (this.Context.User.Identity.IsAuthenticated)
{
userId = this.Context.User.Identity.Name;
}
小开

//添加 cookie

var panelIdCookie = new HttpCookie("panelIdCookie");
panelIdCookie.Values.Add("panelId", panelId.ToString(CultureInfo.InvariantCulture));
panelIdCookie.Expires = DateTime.Now.AddMonths(2);
Response.Cookies.Add(panelIdCookie);

//阅读 cookie

    var httpCookie = Request.Cookies["panelIdCookie"];
if (httpCookie != null)
{
panelId = Convert.ToInt32(httpCookie["panelId"]);
}
小开

虽然接受的答案是正确的,但是它没有说明为什么原始代码无法工作。

你问题中的错误代码:

HttpCookie userid = new HttpCookie("userid", objUser.id.ToString());
userid.Expires.AddYears(1);
Response.Cookies.Add(userid);

看看第二行。过期的基础是在过期财产,其中包含1/1/0001的默认值。以上代码的计算结果为1/1/0002。此外,评估不会被保存回属性。相反,应该在当前日期的基础上设置 Exires 属性。

更正代码:

HttpCookie userid = new HttpCookie("userid", objUser.id.ToString());
userid.Expires = DateTime.Now.AddYears(1);
Response.Cookies.Add(userid);
小开

据我所知,您使用 ASP.NET 身份验证,并且要设置 Cookie 持久化,您需要设置 FormsAuthenticationTicket.IsPeristic = true 这是主要思想。

bool isPersisted = true;
var authTicket = new FormsAuthenticationTicket(
1,
user_name,
DateTime.Now,
DateTime.Now.AddYears(1),//Expiration (you can set it to 1 year)
isPersisted,//THIS IS THE MAIN FLAG
addition_data);
HttpCookie authCookie = new HttpCookie(FormsAuthentication.FormsCookieName, authTicket );
if (isPersisted)
authCookie.Expires = authTicket.Expiration;


HttpContext.Current.Response.Cookies.Add(authCookie);

提交答案