asp.net core session not working , set cookie in response header but not set in browser

Question

I am using sessions to manage application state in ASP.NET CORE and it's configured as below.

 services.AddSession(options =>
            {
                options.CookieName = ".my.Session";
                options.IdleTimeout = TimeSpan.FromSeconds(20);
            });

It's working on localhost but on remote IIS 8 it's not creating cookies so not able to get the values. I also have enabled CORS and don't know what exactly caused this problem. In log it's not showing error either. In response header set cookie is present but not set in browser

did you find a solution? i have the same problem here. – wodzu May 05 '17 at 09:54 — wodzu, May 05 '17 at 09:54

score 3 · Answer 1 · answered Aug 25 '18 at 16:14

I had this problem some time ago. It may be related with the new Cookie Policy.

Try to set options.CheckConsentNeeded = context => false;. So inside "ConfigureServices" in Startup.cs it need to be like this:

public void ConfigureServices(IServiceCollection services)
        {
            var connection = Configuration["ConnectionStrings:DefaultConnection"];
            services.AddDbContext<ProjectDbContext>(options => options.UseMySql(connection, b => b.MigrationsAssembly("PrimaryProject")));

            services.Configure<CookiePolicyOptions>(options =>
            {
                // This lambda determines whether user consent for non-essential cookies is needed for a given request.

                //Here comes the change:
                options.CheckConsentNeeded = context => false;
                options.MinimumSameSitePolicy = SameSiteMode.None;
            });



            services.AddDbContext<ApplicationDbContext>(options =>
                options.UseMySql(connection));
            services.AddDefaultIdentity<IdentityUser>()
                .AddEntityFrameworkStores<ApplicationDbContext>();



            services.AddMvc()
                .SetCompatibilityVersion(CompatibilityVersion.Version_2_1)
                .AddSessionStateTempDataProvider();

            services.AddSession();
        }

Regards,

H. Eberhardt

score 2 · Answer 2 · edited May 16 '17 at 04:57

2

services.AddSession(options => 
{ 
    options.IdleTimeout = TimeSpan.FromMinutes(20); 
    options.CookieHttpOnly = true; 
});

May be it's working, Try it now

edited May 16 '17 at 04:57

Rob

26,989
16
82
98

answered May 16 '17 at 04:45

Avadhesh Jadon

23
4

asp.net core session not working , set cookie in response header but not set in browser

2 Answers2