Repeated cookie query or Storing in viewstate? Which is the better practice?

Question

I have a internal website that users log into. This data is saved as a cookie. From there the users go on their merry way. Every so often the application(s) will query the au

Answer 1

Personally, I prefer using a session to store things, although the other developers here seem to think that's a no-no.

There is one caveat: You may want to store the user's IP in the session and compare it to the user's current IP to help avoid session hijacking. Possibly someone else here has a better idea on how to prevent session hijacking.