Can't Login: "Session Key Failure: Please reload your browser to continue"

+1 vote

I am unable to login to dbFront on the server. I am using the url http://localhost/dbFront to access the dbFront installation. The browser is IE 11.

I can login from other workstations but can't from the server.

Everytime that I login I get the error message "Session Key Failure: Please reload your browser to continue".

in Login Issues by (7.0k points)
edited by

1 Answer

0 votes

dbFront stores an encrypted key in the users session. The "Session Key Failure" error means that this session key has been lost or corrupted.

Because this error is happening consistently, the most likely reason is that the browser is loosing the session cookie forcing the server to create a new session everytime.

One recommendation when securing servers is to add the setting [httpCookies requireSSL="true"] to the web.config. This ensures that cookies are always sent and received using SSL. For more details see: Penetration Testing Issues

If this setting is enabled on the web server then any requests using HTTP potentially have their session cookies dropped. This is known to happen with IE 11 (Internet Explorer).

The URL http://localhost/dbFront, does not use SSL and so some browsers like IE can't retain the session.

If you consistently need to access the local environment using the URL http://localhost/dbFront then the simplest option is to install a current browser such as Brave, Firefox or Chrome.

Another option is to simply use the URL https://localhost/dbFront. This URL will cause a server certificate error but you can easily ignore this error and proceed to use dbFront.

by (64.5k points)
edited by
Welcome to the dbFront Q&A site, where you can ask questions and receive answers from other members of the community.
 | Minimalist Answer Theme by Digitizor Media
Powered by Question2Answer