细说Cookie

馏栩梓 · 2025-5-29 19:13:45

Cookie虽然是个很简单的东西，但它又是WEB开发中一个很重要的客户端数据来源，而且它可以实现扩展性很好的会话状态，所以我认为每个WEB开发人员都有必要对它有个清晰的认识。本文将对Cookie这个话题做一个全面的描述，也算是我对Cookie的认识总结。
Cookie 概述

Cookie是什么？ Cookie 是一小段文本信息，伴随着用户请求和页面在 Web 服务器和浏览器之间传递。Cookie 包含每次用户访问站点时 Web 应用程序都可以读取的信息。
为什么需要Cookie？ 因为HTTP协议是无状态的，对于一个浏览器发出的多次请求，WEB服务器无法区分是不是来源于同一个浏览器。所以，需要额外的数据用于维护会话。Cookie 正是这样的一段随HTTP请求一起被传递的额外数据。
Cookie能做什么？ Cookie只是一段文本，所以它只能保存字符串。而且浏览器对它有大小限制以及它会随着每次请求被发送到服务器，所以应该保证它不要太大。Cookie的内容也是明文保存的，有些浏览器提供界面修改，所以，不适合保存重要的或者涉及隐私的内容。
Cookie 的限制。 大多数浏览器支持最大为 4096 字节的 Cookie。由于这限制了 Cookie 的大小，最好用 Cookie 来存储少量数据，或者存储用户 ID 之类的标识符。用户 ID 随后便可用于标识用户，以及从数据库或其他数据源中读取用户信息。浏览器还限制站点可以在用户计算机上存储的 Cookie 的数量。大多数浏览器只允许每个站点存储 20 个 Cookie；如果试图存储更多 Cookie，则最旧的 Cookie 便会被丢弃。有些浏览器还会对它们将接受的来自所有站点的 Cookie 总数作出绝对限制，通常为 300 个。
通过前面的内容，我们了解到Cookie是用于维持服务端会话状态的，通常由服务端写入，在后续请求中，供服务端读取。下面本文将按这个过程看看Cookie是如何从服务端写入，最后如何传到服务端以及如何读取的。
Cookie的写、读过程

在Asp.net中，读写Cookie是通过使用HttpCookie类来完成的，它的定义如下：

public sealed class HttpCookie
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置将此 Cookie 与其关联的域。默认值为当前域。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public string Domain { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置此 Cookie 的过期日期和时间（在客户端）。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public DateTime Expires { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取一个值，通过该值指示 Cookie 是否具有子键。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public bool HasKeys { get; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置一个值，该值指定 Cookie 是否可通过客户端脚本访问。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 如果 Cookie 具有 HttpOnly 属性且不能通过客户端脚本访问，则为 true；否则为 false。默认为 false。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public bool HttpOnly { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置 Cookie 的名称。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public string Name { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置要与当前 Cookie 一起传输的虚拟路径。默认值为当前请求的路径。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public string Path { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置一个值，该值指示是否使用安全套接字层 (SSL)（即仅通过 HTTPS）传输 Cookie。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public bool Secure { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取或设置单个 Cookie 值。默认值为空引用。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public string Value { get; set; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取单个 Cookie 对象所包含的键值对的集合。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public NameValueCollection Values { get; }
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 获取 System.Web.HttpCookie.Values 属性的快捷方式。
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public string this[string key] { get; set; }
}

复制代码

Cookie写入浏览器的过程：我们可以使用如下代码在Asp.net项目中写一个Cookie 并发送到客户端的浏览器（为了简单我没有设置其它属性）。

HttpCookie cookie = new HttpCookie("MyCookieName", "string value");
Response.Cookies.Add(cookie);

复制代码

我想很多人都写过类似的代码，但是，大家有没有想过：Cookie最后是如何发送到客户端的呢？我们打开Fiddler来看一下吧。

从上图，您应该能发现，我们在服务端写的Cookie，最后其实是通过HTTP的响应头这种途径发送到客户端的。每一个写入动作，都会产生一个【Set-Cookie】的响应头。
浏览器正是在每次获取请求的响应后，检查这些头来接收Cookie的。
Asp.net获取Cookie的过程：我们可以使用如下代码在Asp.net项目中读取一个Cookie

HttpCookie cookie = Request.Cookies["MyCookieName"];
if( cookie != null )
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>labCookie1.Text = cookie.Value;
else
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>labCookie1.Text = "未定义";

复制代码

代码同样也很简单，还是类似的问题：大家有没有想过，Cookie是如何传到服务端的呢？我们还是继续使用Fiddler来寻找答案吧。

从图片中，我们可以发现，Cookie是放在请求头中，发送到服务端的。如果你一直刷新页面，就能发现，每次HTTP请求，Cookie都会被发送。当然了，浏览器也不是发送它所接收到的所有Cookie，它会检查当前要请求的域名以及目录，只要这二项目与Cookie对应的Domain和Path匹配，才会发送。对于Domain则是按照尾部匹配的原则进行的。
所以，我在访问 www.cnblogs.com 时，浏览器并不会将我在浏览 www.163.com 所接收到的 Cookie 发出去。
删除Cookie：其实就是在写Cookie时，设置Expires为一个【早于现在时间的时间】。也就是：设置此Cookie已经过期，浏览器接收到这个Cookie时，便会删除它们。

HttpCookie cookie = new HttpCookie("MyCookieName", null);
cookie.Expires = new DateTime(1900, 1, 1);
Response.Cookies.Add(cookie);

复制代码

使用Cookie保存复杂对象

前面的示例代码大致演示了Cookie的读写操作。不过，我们平时可能希望将更复杂的【自定义类型】通过Cookie来保存，那么又该如何操作呢？对于这个问题，我们定义一个类型来看看如何处理。

public class DisplaySettings
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public int Style;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public int Size;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public override string ToString()
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return string.Format("Style = {0}, Size = {1}", this.Style, this.Size);
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>
}

复制代码

上面的代码，我定义一个类型，用于保存用户在浏览页面时的显示设置。接下来，我将介绍二种方法在Cookie中保存并读取它们。
方法-1，经典做法。（注意前面给出的HttpCookie定义代码中的最后二个成员）

private void WriteCookie_2a()
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DisplaySettings setting = new DisplaySettings { Style = 1, Size = 24 };
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = new HttpCookie("DisplaySettings1");
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>cookie["Style"] = setting.Style.ToString();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>cookie["Size"] = setting.Size.ToString();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>Response.Cookies.Add(cookie);
}
private void ReadCookie_2a()
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = Request.Cookies["DisplaySettings1"];
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookie == null )
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>labDisplaySettings1.Text = "未定义";
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>else {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DisplaySettings setting = new DisplaySettings();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>setting.Style = cookie["Style"].TryToInt();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>setting.Size = cookie["Size"].TryToInt();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>labDisplaySettings1.Text = setting.ToString();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
}

复制代码

方法-2，将对象JSON序列化为字符串。

private void WriteCookie_2b()
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DisplaySettings setting = new DisplaySettings { Style = 2, Size = 48 };
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = new HttpCookie("DisplaySettings2", setting.ToJson());
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>Response.Cookies.Add(cookie);
}
private void ReadCookie_2b()
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = Request.Cookies["DisplaySettings2"];
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookie == null )
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>labDisplaySettings2.Text = "未定义";
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>else {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DisplaySettings setting = cookie.Value.FromJson<DisplaySettings>();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>labDisplaySettings2.Text = setting.ToString();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
}

复制代码

这段代码使用了我定义的二个扩展方法。

/// <summary>
/// 将一个对象序列化成 JSON 格式字符串
/// </summary>
/// <param name="obj"></param>
/// <returns></returns>
public static string ToJson(this object obj)
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( obj == null )
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return string.Empty;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>JavaScriptSerializer jss = new JavaScriptSerializer();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return jss.Serialize(obj);
}
/// <summary>
/// 从JSON字符串中反序列化对象
/// </summary>
/// <typeparam name="T"></typeparam>
/// <param name="cookie"></param>
/// <returns></returns>
public static T FromJson<T>(this string cookie)
{
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( string.IsNullOrEmpty(cookie) )
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return default(T);
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>JavaScriptSerializer jss = new JavaScriptSerializer();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return jss.Deserialize<T>(cookie);
}

复制代码

对于这二种方法，我个人更喜欢后者，因为它具有更好扩展性：如果类型增加了成员，不需要修改读写Cookie的代码。
不过，这种方式产生的有些字符，比如【双引号】，极少数浏览器(Opera)不支持，所以需要做UrlEncode或者Base64编码处理。
同理，对于第一种方法，遇到Value有【双引号】时，我们同样需要做UrlEncode或者Base64编码处理。
Js中读写Cookie

Cookie并非只能在服务端读写，在客户端的浏览器中也可以实现对它的读写访问。而且在JS中创建的Cookie对于服务端仍然有效（可见），接下来我们来看看在JS中如何写入Cookie，演示代码将创建一个按钮，并在点击按钮后写入Cookie

[/code]在JS中写Cookie很简单，只要给document.cookie赋值一个Cookie字符串即可，至于格式，可以参考前面用Fiddle看到的结果。
再来看一下如何使用JS读取Cookie吧。请参考如下代码：
[code]

复制代码

仍然是访问document.cookie，不过，这次我们得到却是全部的Cookie值，每个Key/Value项用分号分开，中间则用等号分开。所以，如果您想在JS中读取Cookie，一定要按照这个规则来拆分并解析您要读取的Cookie项。鉴于这样的操作有些繁琐，我们可以jquery.cookie.js插件来轻松完成这个功能，有兴趣的朋友也可以看一下它是如何处理的。这个插件的代码比较少，这里就直接贴出，

/**
* Create a cookie with the given name and value and other optional parameters.
*
* @example $.cookie('the_cookie', 'the_value');
* @desc Set the value of a cookie.
* @example $.cookie('the_cookie', 'the_value', {expires: 7, path: '/', domain: 'jquery.com', secure: true});
* @desc Create a cookie with all available options.
* @example $.cookie('the_cookie', 'the_value');
* @desc Create a session cookie.
* @example $.cookie('the_cookie', null);
* @desc Delete a cookie by passing null as value.
*
* @param String name The name of the cookie.
* @param String value The value of the cookie.
* @param Object options An object literal containing key/value pairs to provide optional cookie attributes.
* @option Number|Date expires Either an integer specifying the expiration date from now on in days or a Date object.
* <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> If a negative value is specified (e.g. a date in the past), the cookie will be deleted.
* <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> If set to null or omitted, the cookie will be a session cookie and will not be retained
* <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> when the the browser exits.
* @option String path The value of the path atribute of the cookie (default: path of page that created the cookie).
* @option String domain The value of the domain attribute of the cookie (default: domain of page that created the cookie).
* @option Boolean secure If true, the secure attribute of the cookie will be set and the cookie transmission will
* <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>require a secure protocol (like HTTPS).
* @type undefined
*
* @name $.cookie
* @cat Plugins/Cookie
* @author Klaus Hartl/klaus.hartl@stilbuero.de
*/
/**
* Get the value of a cookie with the given name.
*
* @example $.cookie('the_cookie');
* @desc Get the value of a cookie.
*
* @param String name The name of the cookie.
* @return The value of the cookie.
* @type String
*
* @name $.cookie
* @cat Plugins/Cookie
* @author Klaus Hartl/klaus.hartl@stilbuero.de
*/
jQuery.cookie = function(name, value, options) {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if (typeof value != 'undefined') { // name and value given, set cookie
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>options = options || {};
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if (value === null) {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>value = '';
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>options.expires = -1;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var expires = '';
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if (options.expires && (typeof options.expires == 'number' || options.expires.toUTCString)) {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var date;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if (typeof options.expires == 'number') {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>date = new Date();
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>date.setTime(date.getTime() + (options.expires * 24 * 60 * 60 * 1000));
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} else {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>date = options.expires;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>expires = '; expires=' + date.toUTCString(); // use expires attribute, max-age is not supported by IE
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var path = options.path ? '; path=' + options.path : '';
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var domain = options.domain ? '; domain=' + options.domain : '';
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var secure = options.secure ? '; secure' : '';
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>document.cookie = [name, '=', encodeURIComponent(value), expires, path, domain, secure].join('');
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} else { // only name given, get cookie
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var cookieValue = null;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if (document.cookie && document.cookie != '') {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var cookies = document.cookie.split(';');
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>for (var i = 0; i < cookies.length; i++) {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>var cookie = jQuery.trim(cookies[i]);
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// Does this cookie string begin with the name we want?
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if (cookie.substring(0, name.length + 1) == (name + '=')) {
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>cookieValue = decodeURIComponent(cookie.substring(name.length + 1));
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>break;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return cookieValue;
<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}
};

复制代码

注意哦：前面我们看到了HttpCookie有个HttpOnly属性，如果它为true，那么JS是读不到那个Cookie的，也就是说：我们如果在服务端生成的Cookie不希望在JS中能被访问，可以在写Cookie时，设置这个属性。不过，通过一些工具，还是可以看到它们。
接下来，我们再来看看Asp.net中Cookie有哪些应用。
Cookie在Session中的应用

在Asp.net中，HttpContext, Page对象都有个Session的对象，我们可以使用它来方便地在服务端保存一些与会话相关的信息。
前面我们也提到过，HTTP协议是无状态的，对于一个浏览器发出的多次请求，WEB服务器无法区分是不是来源于同一个浏览器。所以，为了实现会话，服务端需要一个会话标识ID能保存到浏览器，让它在后续的请求时都带上这个会话标识ID，以便让服务端知道某个请求属于哪个会话，这样便可以维护与会话相关的状态数据。由于Cookie对于用户来说，是个不可见的东西，而且每次请求都会传递到服务端，所以它就是很理想的会话标识ID的保存容器。在Asp.net中，默认也就是使用Cookie来保存这个ID的。注意：虽然Asp.net 2.0也支持无Cookie的会话，但那种方式要修改URL，也有它的缺点，因此这种方法并没有广泛的使用。本文将不对这个话题做过多的分析，就此略过无Cookie会话这种方式。
我们来看看Session是如何使用Cookie来保存会话标识ID的，在默认的Asp.net配置中，Web.config有着如下定义：

[/code]如果我们执行以下操作：
[code]Session["Key1"] = DateTime.Now;

复制代码

此时，我们可以使用一些浏览器提供的工具来查看一下现在的Cookie情况。

从图片上看，这个Cookie的名字就是我们在配置文件中指出的名称，我们可以修改一下配置文件：

[/code]再来执行上面的写Session的操作，然后看Cookie
[align=center] [/align]
我们可以看到：SK的Cookie出现了。说明：在截图时我把名称为"ASP.NET_SessionId"的Cookie删除了。
通过上面示例，我们可以得到结论，Session的实现是与Cookie有关的，服务端需要将会话标识ID保存到Cookie中。
这里再一次申明，除非你使用无Cookie的会话模式，否则Session是需要Cookie的支持。反过来，Cookie并不需要Session的支持。
[size=6]Cookie在身份验证中的应用[/size]
我想很多人都在Asp.net的开发中使用过Form身份认证。对于一个用户请求，我们可以在服务端很方便地判断它是不是代表一个已登录用户。
[code]this.labStatus.Text = (Request.IsAuthenticated ? "已登录" : "未登录");

复制代码

那么，您有没有好奇过：Asp.net是如何识别一个请求是不是一个已登录用户发起的呢？说到这里，我们就要从用户登录说起了。为了实现登录及Form认证方式，我们需要如下配置：

<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>

复制代码

接下来，我们需要实现用户登录逻辑。具体实现方式有很多，不过，最终的调用都是差不多的，如下代码所示：

private void SetLogin(){ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>System.Web.Security.FormsAuthentication.SetAuthCookie("fish", false);}

复制代码

只要执行了以上代码，我们就可以看到，前面的判断【Request.IsAuthenticated】返回true，最终会显示"已登录"。为了探寻这个秘密，我们还是来看一下当前页面的Cookie情况。

果然，多出来一个Cookie，名称与我在配置文件中指定的名称相同。我们再来看看如果注销当前登录会是什么样子的：

private void SetLogout(){ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>System.Web.Security.FormsAuthentication.SignOut();}

复制代码

看到了吗，名为"UserStatus"的Cookie不见了。此时如果你再去观察【Request.IsAuthenticated】，可以发现它此时返回 false。或者，您也可以再试一次，登录后，直接删除名为"UserStatus"的Cookie，也能发现登录状态将显示"未登录"。或许，您还是有点不清楚前面我调用【System.Web.Security.FormsAuthentication.SetAuthCookie("fish", false);】后，Asp.net做了些什么，回答这个问题其实很简单：自己用Reflector.exe去看一下Asp.net的实现吧。
这里为了更让您能信服登录与Cookie有关，我将直接创建一个Cookie看一下Asp.net能不能认可我创建的Cookie，并认为登录有效。请看代码：

private void SetLogin(){ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>//System.Web.Security.FormsAuthentication.SetAuthCookie("fish", false); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 下面的代码和上面的代码在作用上是等效的。 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>FormsAuthenticationTicket ticket = new FormsAuthenticationTicket( <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>2, "fish", DateTime.Now, DateTime.Now.AddDays(30d), false, string.Empty); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>string str = FormsAuthentication.Encrypt(ticket); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, str); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>Response.Cookies.Add(cookie);}

复制代码

如果执行这段代码，您将发现：【Request.IsAuthenticated】返回true，登录状态会显示"已登录"。
至此，我们可以得出一个结论：Form身份认证依赖Cookie，Asp.net就是每次检查我们在配置文件中指定的Cookie名称，并解密这个Cookie来判断当前请求用户的登录状态。
Cookie的安全状况

从以上图片，您应该能发现：浏览器能提供一些界面让用户清楚的观察我们在服务端写的Cookie，甚至有些浏览器还提供很方便的修改功能。如下图所示：

所以，我们在服务端写代码读取Cookie时，尤其是涉及类型转换、反序列化或者解密时，一定要注意这些操作都有可能会失败。而且上图也清楚的反映了一个事实：Cookie中的值都是“一目了然”的，任何人都能看到它们。所以，我们尽量不要直接在Cookie中保存一些重要的或者敏感的内容。如果我们确实需要使用Cookie保存一些重要的内容，但又不希望被他人看懂，我们可以使用一些加密的方法来保护这些内容。
1. 对于一些重要性不高的内容，我们可以使用Base64之类的简单处理方式来处理。
2. 对于重要性相对高一点的内容，我们可以利用.net提供的一些加密工具类，自己来设计加密方法来保护。不过，密码学与加密解密并不是很简单的算法，因此，自己设计的加密方式可能不会很安全。
3. 重要的内容，我们可以使用.net提供的FormsAuthenticationTicket,FormsAuthentication来加密。我认为这种方式还是比较安全的。毕竟前面我们也看过了，Asp.net的Form身份认证就是使用这种方式来加密用户登录的身份标识的，所以，如果这种方式不安全，也就意味着Asp.net的身份认证也不安全了。如果您使用这种方式来加密，那么请注意：它产生的加密后文本还是比较大的，前面我也提到过，每次请求时，浏览器都会带上与请求相匹配的所有Cookie，因此，这种Cookie会对传输性能产生一定的影响，所以，请小心使用，切记不可过多的使用。
这里要补充一下：去年曾经出现过【Padding Oracle Attack】这个话题，一些人甚至错误的认为是Asp.net加密方式不安全！如果您也是这样认为的，那么可以看一下这篇文章：浅谈这次ASP.NET的Padding Oracle Attack相关内容，以消除这个错误的认识。当然了，我们也可以从这个话题得到一些收获：解密失败时，不要给出过多的提示，就当没有这个Cookie存在。
如何在C#发请的请求中使用Cookie

前面我们一直在谈服务端与浏览器中使用Cookie，其实浏览器也是一个普通的应用程序，.net framework也提供一些类也能让我们直接发起HTTP请求，下面我们来看一下如何在C#发请的请求中使用Cookie ，其实也很简单，主要是使用了CookieContainer类，请看以下演示代码：

private static string SendHttpRequestGet(string url, Encoding encoding, <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> CookieContainer cookieContainer) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( string.IsNullOrEmpty(url) ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>throw new ArgumentNullException("url"); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( encoding == null ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>throw new ArgumentNullException("encoding"); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpWebRequest request = (HttpWebRequest)WebRequest.Create(url); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>request.Method = "GET"; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>request.CookieContainer = cookieContainer; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>using( WebResponse response = request.GetResponse() ) { <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>using( StreamReader reader = new StreamReader(response.GetResponseStream(), encoding) ) { <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return reader.ReadToEnd(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>private void SendHttpDEMO() <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>StringBuilder sb = new StringBuilder(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>CookieContainer cookieContainer = new CookieContainer(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>string url = "http://www.taobao.com"; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>SendHttpRequestGet(url, Encoding.Default, cookieContainer); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 后面可以继续发起HTTP请求，此时将会包含上次从服务器写入的Cookie <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>//SendHttpRequestGet("同域名下的其它URL", Encoding.Default, cookieContainer); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 至此，我们可以显示取得了哪些Cookie <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>CookieCollection cookies = cookieContainer.GetCookies(new Uri(url)); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookies != null ) { <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>foreach( System.Net.Cookie cookie in cookies ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>sb.AppendLine(cookie.ToString()); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>txtCookies.Text = sb.ToString(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}

复制代码

重构与使用总结

在前面的Asp.net示例代码中，我一直使用.net提供的HttpCookie类来操作Cookie，是为了展示用原始的方式来使用Cookie，这些代码有点重复，也有点繁琐，为此，我提供了几个简单的方法可以更容易的使用Cookie，也算是对Cookie使用的一个总结。

/// /// 用于方便使用Cookie的扩展工具类/// public static class CookieExtension{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 我们可以为一些使用频率高的类型写专门的【读取】方法 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// 从一个Cookie中读取字符串值。 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> public static string GetString(this HttpCookie cookie) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookie == null ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return null; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return cookie.Value; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// 从一个Cookie中读取 Int 值。 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> public static int ToInt(this HttpCookie cookie, int defaultVal) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookie == null ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return defaultVal; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return cookie.Value.TryToInt(defaultVal); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// 从一个Cookie中读取值并转成指定的类型 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> public static T ConverTo(this HttpCookie cookie) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookie == null ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return default(T); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return (T)Convert.ChangeType(cookie.Value, typeof(T)); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// 从一个Cookie中读取【JSON字符串】值并反序列化成一个对象，用于读取复杂对象 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> public static T FromJson(this HttpCookie cookie) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( cookie == null ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return default(T); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return cookie.Value.FromJson(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// 将一个对象写入到Cookie <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> public static void WriteCookie(this object obj, string name, DateTime? expries) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( obj == null ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>throw new ArgumentNullException("obj"); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( string.IsNullOrEmpty(name) ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>throw new ArgumentNullException("name"); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = new HttpCookie(name, obj.ToString()); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( expries.HasValue ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>cookie.Expires = expries.Value; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpContext.Current.Response.Cookies.Add(cookie); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// 删除指定的Cookie <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>/// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> /// <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> public static void DeleteCookie(string name) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>if( string.IsNullOrEmpty(name) ) <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>throw new ArgumentNullException("name"); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = new HttpCookie(name); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 删除Cookie，其实就是设置一个【过期的日期】 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>cookie.Expires = new DateTime(1900, 1, 1); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpContext.Current.Response.Cookies.Add(cookie); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}}

复制代码

更完整的代码可以从本文的示例代码中获得。（文章底部有下载地址）
使用方式：

public static class TestClass{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public static void Write() <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>string str = "中国"; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>int aa = 25; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DisplaySettings setting = new DisplaySettings { Style = 3, Size = 50 }; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DateTime dt = new DateTime(2012, 1, 1, 12, 0, 0); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>str.WriteCookie("Key1", DateTime.Now.AddDays(1d)); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>aa.WriteCookie("Key2", null); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>setting.ToJson().WriteCookie("Key3", null); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>dt.WriteCookie("Key4", null); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public static void Read() <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpRequest request = HttpContext.Current.Request; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>string str = request.Cookies["Key1"].GetString(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>int num = request.Cookies["Key2"].ToInt(0); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DisplaySettings setting = request.Cookies["Key3"].FromJson(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DateTime dt = request.Cookies["Key4"].ConverTo(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}

复制代码

注意哦：以上代码中都是直接使用字符串"Key"的形式，这种方式对于大一些的程序在后期可能会影响维护。
所以建议：将访问Cookie所使用的Key能有一个类来统一的定义，或者将读写操作包装成一些属性放在一个类中统一的管理。

public static class CookieValues{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 建议把Cookie相关的参数放在一起，提供 get / set 属性（或者方法）来访问，以避免"key"到处乱写 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public static string AAA <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>get { return HttpContext.Current.Request.Cookies["Key1"].GetString(); } <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public static int BBB <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>get { return HttpContext.Current.Request.Cookies["Key2"].ToInt(0); } <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public static DisplaySettings CCC <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>get { return HttpContext.Current.Request.Cookies["Key3"].FromJson(); } <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>public static DateTime DDD <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>{ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>get { return HttpContext.Current.Request.Cookies["Key4"].ConverTo(); } <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>}}

复制代码

补充

根据一些朋友提供的反馈，这里再补充4个需要注意的地方：
1. 如果使用Form登录验证且希望使用Cookie方式时，建议设置 cookieless="UseCookies"，因为这个参数的默认值是：cookieless="UseDeviceProfile"，Asp.net可能会误判。dudu就吃过亏。

<forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>

复制代码

2. Cookie有3个属性，一般我们可以不用设置，但它们的值可以在Web.config中指定默认值：

[/code]3. 虽然在写Cookie时，我们可以设置name, value之外的其它属性，但是在读取时，是读不到这些设置的。其实在我的示例代码中有体现，我前面也忘记了说明了。
4. HttpRequest.Cookies 与 HttpResponse.Cookies 会有关系（很奇怪吧）。
以下代码演示了这个现象：
[code]protected void Page_Load(object sender, EventArgs e){ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>DateTime.Now.ToString().WriteCookie("t1", null); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>label1.Text = ShowAllCookies(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>Guid.NewGuid().ToString().WriteCookie("t2", null); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>// 如果去掉下面代码，将会看到2个t1 <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> Response.Cookies.Remove("t1"); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>Response.Cookies.Remove("t2");}private string ShowAllCookies(){ <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>StringBuilder sb = new StringBuilder(); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>for( int i = 0; i < Request.Cookies.Count; i++ ) { <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>HttpCookie cookie = Request.Cookies[i]; <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication> <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>sb.AppendFormat("{0}={1}
", cookie.Name, cookie.Value); <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>} <forms name="MyCookieName" cookieless="UseCookies"></forms>
</authentication><forms name="UserStatus"></forms>
</authentication>return sb.ToString();}

复制代码

上面的试验代码将会一直显示 t1 的Cookie ，这里就不再贴图了。

本文的所有示例代码可以点击此处下载。
如果，您认为阅读这篇博客让您有些收获，不妨点击一下右下角的【推荐】按钮。
如果，您希望更容易地发现我的新博客，不妨点击一下右下角的【关注 Fish Li】。
因为，我的写作热情也离不开您的肯定支持。
感谢您的阅读，如果您对我的博客所讲述的内容有兴趣，请继续关注我的后续博客，我是Fish Li 。

来源：程序园用户自行投稿发布，如果侵权，请联系站长删除
免责声明：如果侵犯了您的权益，请联系站长，我们会及时删除侵权内容，谢谢合作！

账号		自动登录	找回密码
密码			立即注册