Originally posted by Raj Kumar Bindal:
If you are setting username in session,there should not be any intermixing of the data.
That's not entirely true. As John pointed out, sessions are not thread-safe. It was said that sessions are limited to a single user, and that's sort of true, but in reality thery're limited to a single cookie pool.
So cross-thread data contention in the session can still occur for any web page where multiple requests can be simultaneously active. This can happen if a page has frames, uses iframes, or uses Ajax.
Some browsers also share cookies across browser windows under certain circumstances which could also lead to multiple threads accessing the same session.
[ March 04, 2007: Message edited by: Bear Bibeault ]