By default, the SessionID value is stored in a non-expiring session cookie in the browser.
If I am trying to use Session State (I'm not using Cookieless Session IDs) and a users browser does not accept cookies, will Session State work?
2
votes
I'm confused.. You say you refuse to use cookieless sessions and then complain that sessions (with cookies, because you won't accept cookieless sessions) won't work without cookies? No, cookie based sessions won't work if the browser won't accept cookies. That shouldn't be surprising.
- Erik Funkenbusch
1 Answers
4
votes
According to this it is supported: http://msdn.microsoft.com/en-us/library/aa479314.aspx
<sessionState cookieless="true" />
The downside is that the session ID is placed in every URL used by the application:
http://yourserver/folder/(session ID here)/default.aspx
See this SO answer for additional details: Absolute URL Cookieless
