A cookie-less session is a method of managing user sessions in a web application without using browser cookies. In traditional web sessions, a unique session identifier is stored in a cookie on the user's device to associate subsequent requests with the same session. In a cookie-less session, this session identifier is not stored in a cookie but is typically appended to URLs, sent as a hidden form field, or managed through other means, such as URL rewriting or server-side storage. This approach is often used in scenarios where users have disabled cookies in their browsers or for security reasons to minimize cookie-related vulnerabilities.
vBy default, a session uses a
browser cookie in the background.
vIn cookie less, the session is passed via
url
instead of cookie.
Tags:
ASP.Net Web Form