8

We are planning to move one of our applications on cloud, but somewhere I read that using session in cloud can be dangerous. but this blog dosen't explain any danger as such.

I wanted to know that is there really any threat in using session for cloud applications?

I am new to the forum so excuse if I have commited any mistake and please guide me to correct the same.

Manoj
  • 81
  • 1
  • What do you mean session in the cloud? Your own custom session? If so, it's no different than any other db call to the cloud. – Tejs May 13 '11 at 13:21

2 Answers2

3

If you plan to run your application across several nodes, you will need to take load balancing and out-of-proc sessions into account, but there's nothing inherently insecure about using sessions while your servers are hosted somewhere else.

That just doesn't make any sense.

John Cromartie
  • 4,184
  • 27
  • 32
1

If 'dangerous' means that in certain situations the use of Session won't work, then you're right if you would be using Azure to host your cloud application. Then it depends on the number of instances you are running.

If you're only running 1 instance then you can use Session (that lives in memory on the instance) without changing anything. But if you're using more than 1 instance (the requests are being load balanced and each request can be handled at a different instance) in memory Session won't work out of the box. To resolve this you're able to use 3 different ways to store session.

See this question for more information: ASP.NET session state provider in Azure

Community
  • 1
  • 1
nickvane
  • 2,979
  • 2
  • 20
  • 23