12. What are the advantages of the code-behind feature?

The code-behind feature of ASP.NET offers a number of advantages:

Makes code easy to understand and debug by separating application logic from
HTML tags

Provides the isolation of effort between graphic designers and software

engineers

Removes the problems of browser incompatibility by providing code files to exist

on the Web server and supporting Web pages to be compiled on demand.

14. What is AutoPostBack?

If you want a control to postback automatically when an event is raised, you need to set
the AutoPostBackproperty of the control to True.
15. What is the function of the ViewState property?
The ASP.NET 4.0 introduced a new property called ViewStateMode for the Control class.
Now you can enable the view state to an individual control even if the view state for an
ASP.NET page is disabled.

16. Why do you use the App_Code folder in ASP.NET?

The App_Code folder is automatically present in the project. It stores the files, such as
classes, typed data set, text files, and reports. If this folder is not available in the
application, you can add this folder. One of the important features of
the App_Code folder is that only one dll is created for the complete folder, irrespective of
how many files it contains.
20. What is IIS? Why is it used?
Internet Information Services (IIS) is created by Microsoft to provide Internet-based
services to ASP.NET Web applications. It makes your computer to work as a Web server
and provides the functionality to develop and deploy Web applications on the server. IIS
handles the request and response cycle on the Web server. It also offers the services of
SMTP and FrontPage server extensions. The SMTP is used to send emails and use
FrontPage server extensions to get the dynamic features of IIS, such as form handler.
24. Which two new properties are added in ASP.NET 4.0 Page class?
The two new properties added in the Page class are MetaKeyword and MetaDescription.
25. What is tracing? Where is it used?
Tracing displays the details about how the code was executed. It refers to collecting
information about the application while it is running. Tracing information can help you to
troubleshoot an application. It enables you to record information in various log files
about the errors that might occur at run time. You can analyze these log files to find the
cause of the errors.
In .NET, we have objects called Trace Listeners. A listener is an object that gets the
trace output and stores it to different places, such as a window, a file on your locale
drive, or a SQL Server.
The System.Diagnostics namespace contains the predefined interfaces, classes, and
structures that are used for tracing. It supplies two classes, Trace and Debug, which
allow you to write errors and logs related to the application execution. Trace listeners
are objects that collect the output of tracing processes.

26. What is the difference between authentication and authorization?

Authentication verifies the identity of a user and authorization is a process where you
can check whether or not the identity has access rights to the system. In other words,
you can say that authentication is a procedure of getting some credentials from the
users and verify the user's identity against those credentials. Authorization is a
procedure of granting access of particular resources to an authenticated user. You
should note that authentication always takes place before authorization.
28. Which ASP.NET objects encapsulate the state of the client and the browser?
The Session object encapsulates the state of the client and browser.
30. What is ViewState?
The ViewState is a feature used by ASP.NET Web page to store the value of a page and
its controls just before posting the page. Once the page is posted, the first task by the
page processing is to restore the ViewState to get the values of the controls.
31. Which method is used to force all the validation controls to run?
The Page.Validate() method is used to force all the validation controls to run and to
perform validation.

32. Which method has been introduced in ASP.NET 4.0 to redirect a page permanently?
The RedirectPermanent() method added in ASP.NET 4.0 to redirect a page
permanently. The following code snippet is an example of
the RedirectPermanent() method:

RedirectPermanent("/path/Aboutus.aspx");
34. What is the difference between
the Response.Write() and Response.Output.Write() methods?
The Response.Write() method allows you to write the normal output; whereas,
theResponse.Output.Write() method allows you to write the formatted output.
35. What does the Orientation property do in a Menu control?
Orientation property of the Menu control sets the horizontal or vertical display of a menu
on a Web page. By default, the orientation is vertical.
36. Differentiate between client-side and server-side validations in Web pages.
Client-side validations take place at the client end with the help of JavaScript and
VBScript before the Web page is sent to the server. On the other hand, server-side
validations take place at the server end.
What is the default timeout for a Cookie?
The default time duration for a Cookie is 30 minutes.
What are the events that happen when a client requests an ASP.NET page from IIS
server?
The following events happen when a client requests an ASP.NET page from the IIS
server:

1. User requests for an application resource.

2. The integrated request-processing pipeline receives the first user request.

3. Response objects are created for each user request.

4. An object of the HttpApplication class is created and allocated to
the Request object.

5. The HttpApplication class processes the user request.

Explain how Cookies work. Give an example of Cookie abuse.
The server tells the browser to put some files in a cookie, and the client then sends all
the cookies for the domain in each request. An example of cookie abuse is large cookies
affecting the network traffic.
What is the use of PlaceHolder control? Can we see it at runtime?
The PlaceHolder control acts as a container for those controls that are dynamically
generated at runtime. We cannot see it at runtime because it does not produce any
visible output. It used only as a container.
What setting must be added in the configuration file to deny a particular user from
accessing the secured resources?
To deny a particular user form accessing the secured resources, the web.config file
must contain the following code:

<authorization >
<deny users="username" />
</authorization>
What are the event handlers that can be included in the Global.asax file?
The Global.asax file contains some of the following important event handlers:

Application_Error
Application_Start
Application_End
Session_Start
Session_End

What is the difference between page-level caching and fragment caching?

In the page-level caching, an entire Web page is cached; whereas, in the fragment
caching, a part of the Web page, such as a user control added to the Web page, is
cached.
Describe the complete lifecycle of a Web page.
When we execute a Web page, it passes from the following stages, which are collectively
known as Web page lifecycle:

Page request - During this stage, ASP.NET makes sure the page either parsed or
compiled and a cached version of the page can be sent in response

Start - During this stage sets the Request and Response page properties and the
page check the page request is either a postback or a new request

Page Initialization - During this stage, the page initialize and the control's Unique
Id property are set

Load - During this stage, if the request is postback, the control properties are
loaded without loading the view state and control state otherwise loads the view
state

Validation - During this stage, the controls are validated

Postback event handling - During this stage, if the request is a postback, handles
the event

Rendering - During this stage, the page invokes the Render method to each
control for return the output

Unload - During this stage, when the page is completely rendered and sent to the
client, the page is unloaded.(Garbage Collection) (ex. File read, connection close,
and Called Finalize Method) (free unmanaged code)

What is a Cookie? Where is it used in ASP.NET?

Cookie is a lightweight executable program, which the server posts to client machines.
Cookies store the identity of a user at the first visit of the Web site and validate them
later on the next visits for their authenticity. The values of a cookie can be transferred
between the user's request and the server's response.
How can you enable impersonation in the web.config file?
To enable impersonation in the web.confing file, you need to include
the <identity> element in theweb.config file and set the impersonate attribute to true
as shown in the following code snippet:

<identity impersonate = "true" />

Advantage : To Maintain a Session.

Drawbag : we cant run rpt files while impersonate is true. Because its show error as already
Thread is running. Application is busy.

In which database is the information, such as membership, role management, profile,

and Web parts personalization, stored?
The aspnetdb database stores all information.

What is State Management? How many ways are there to maintain a state in .NET?
State management is used to store information requests. The state management is used
to trace the information or data that affect the state of the applications.
There are two ways to maintain a state in .NET, Client-Based state management and
Server-Based state management.
The following techniques can be used to implement the Client-Based state management:

View State
Hidden Fields
Cookies
Query Strings
Control State

The following techniques can be used to implement Server-Based state management:

Application State
Session State
Profile Properties

Explain the cookie less session and its working.

ASP.NET manages the session state in the same process that processes the request and
does not create a cookie. It is known as a cookie less session. If cookies are not
available, a session is tracked by adding a session identifier to the URL. The cookie less
session is enabled using the following code snippet:<sessionState cookieless="true"

/>
What is a round trip?
The trip of a Web page from the client to the server and then back to the client is known
as a round trip.
What are the major built-in objects in ASP.NET?
The major built-in objects in ASP.NET are as follows:

Application
Request
Response
Server
Session
Context
Trace

How can you dynamically add user controls to a page?

User controls can be dynamically loaded by adding a Web User Control page in the
application and adding the control on this page.
What does the "EnableViewState" property do? Why do we want it On or Off?
The EnableViewState property enables the ViewState property on the page. It is set to
On to allow the page to save the users input between postback requests of a Web page;
that is, between the Request and corresponding Response objects. When this property is
set to Off, the page does not store the users input during postback.
Which event determines that all the controls are completely loaded into memory?
The Page_Load event determines that all the controls on the page are fully loaded. You
can also access the controls in the Page_Init event; however, the ViewState property
does not load completely during this event.
What is the function of the CustomValidator control?
It provides the customize validation code to perform both client-side and server-side
validation.
What is Role-based security?
In the Role-based security, you can assign a role to every user and grant the privilege
according to that role. A role is a group of principal that restricts a user's privileges.
Therefore, all the organization and applications use role-based security model to
determine whether a user has enough privileges to perform a requested task.
Where is the ViewState information stored?
The ViewState information is stored in the HTML hidden fields.
What are the various ways of authentication techniques in ASP.NET?

There are various techniques in ASP.NET to authenticate a user. You can use one of the
following ways of authentication to select a built-in authentication provider:

Windows Authentication - This mode works as the default authentication

technique. It can work with any form of Microsoft Internet Information Services
(IIS) authentication, such as Basic, Integrated Windows authentication
(NTLM/Kerberos), Digest, and certificates. The syntax of Windows authentication
mode is given as follows: <authentication mode="windows" />

Forms Authentication - You can specify this mode as a default authentication

mode by using the following code snippet: <authentication mode="Forms"/>

Passport - This mode works with Microsoft Passport authentication, as shown in

the following code snippet: <authentication mode = "Passport"/>

Difference between RowCreated, RowDataBound ,RowCommand

RowCreated event fires when the html-controls for a row are created. For
example the controls you specify in templates, such as a text box or a
dropdownlist. Data binding has not yet taken place.
RowDataBound event fires when the data row is bound to the data of the
GridView. Can be used to do data manipulation based on the custom condition, or
do logical function based on the data for each GridViewRow or to alter the UI of
each row based on the condition.
RowCommand event fires when a button is clicked from inside the GridView
Row. Can be used to Select,Insert,Update, Delete, or to do custom operation
inside the GridViewRow

Difference between Eval() and Bind()

|<%# Eval() %>

| <%# Bind()%>
-||
1 |OneWay Binding
| Bind is two-way
2 |Readonly databinging
| Read/write databinding
Normally Bind() method is used inside the Gridview or other datacontrol to
extract the data back to the datasource from the child controls in the template.
Normally
the Bind() used inside the EditItemTemplate and InsertItemTemplate of
databound countrol.

Managing Data Persistent With ASP.NET

Persistence
Method
Application
Cookie

Form Post
QueryString

Number of Users Expire Time

All users

Data
Size
Any Size

Until the next application

restart
One user
As short as desired, or for
Small data
months or even years if the
user doesnt delete their
cookies
One user
For the next request (can be It store virtually any amount of data
reused across many requests)
One user or one For the next request (can be Simple Data
group of users reused across many requests)

Session

One user

Cache
Context

All users or a
subset of users
One user

ViewState
Config file

One user
All users

As long as the user is active, Can store any amount of data.

plus a timeout period
(typically 20 minutes)
As long or as short as needed Any type and size of data
This request only

Can hold large objects, but typically

does not since it is often used for
every request
One Web form
Reasonable amount of data
Until the configuration file is Can hold a lot of data; usually
updated
organized as many small strings or
XML structures

Enable Paging in GridView

If you are binding the data in page load You no need to assign the datasource again else
you should assign the datasource here

Enabling and disabling Session

To Optimize the performance once can enable or disable the session in
1) Page Level
2) Application Level
At Page level set the EnableSessionState =False in page directive, it will disable the
session activity.
To access the session but not allow to writing data set EnableSessionState =ReadOnly
To disable the session in application level, configer the web.config as below
<system.Web>
<Pages enableSessionState=false>
</system.Web>

Session Event in ASP.NET

There are two types of session events available in ASP.NET:
1) Session_Start
2) Session_End

You can find or handle the above two events in global.asax file. Session_Start event will
trigger when ever new session start. Similarly Session_End event trigger when a session
is abandoned or expires.

Code to view ViewState information in ASP.NET

It is advisable not to store critical information in ViewState, because it is not encrypted
it encoded. To view the information of view state please use the below code.
string strDecodevalue=";
string strEncodedValue="; // Copy and past the viewstate encoded value from HTML
page.
strDecodevalue =
Encoding.ASCII.GetString(Convert.FromBase64String(strEncodedValue ));
MessageBox.Show(strDecodevalue);

How to enable Cookieless Session

By default, the SessionID value is stored in a non-expiring session cookie in the
browser. However, you can specify that session identifiers should not be stored in a
cookie by setting the cookieless attribute to true in the sessionState section of the
Web.config file.

<configuration>
<system.web>
<sessionState cookieless="true"
regenerateExpiredSessionId="true" />
</system.web>
</configuration>
ASP.NET maintains cookieless session state by automatically inserting a unique session
ID into the pages URL. Then URL will looks like
Explain the validation controls. How many validation controls in ASP.NET 4.0?
Validation controls are responsible to validate the data of an input control. Whenever
you provide any input to an application, it performs the validation and displays an error
message to user, in case the validation fails.

ASP.NET 4.0 contains the following six types of validation controls:

CompareValidator - Performs a comparison between the values contained in two
controls.

CustomValidator - Writes your own method to perform extra validation.

RangeValidator- Checks value according to the range of value.
RegularExpressionValidator - Ensures that input is according to the specified
pattern or not.

RequiredFieldValidator - Checks either a control is empty or not.

ValidationSummary - Displays a summary of all validation error in a central
location.

What is difference between a Label control and a Literal control?

The Label control's final html code has an HTML tag; whereas, the Literal control's final
html code contains only text, which is not surrounded by any HTML tag.
What is the use of the Global.asax file?
The Global.asax file executes application-level events and sets application-level
variables.
94. What is the difference between ASP session and ASP.NET session?
ASP does not support cookie-less sessions; whereas, ASP.NET does. In addition, the
ASP.NET session can span across multiple servers.
96. What is the difference between a page theme and a global theme?
A page theme is stored inside a subfolder of the App_Themes folder of a project and
applied to individual Web pages of that project. Global themes are stored inside the
Themes folder on a Web server and apply to all the Web applications on the Web server.
98. What is the use of the <sessionState> tag in the web.config file?
The <sessionState> tag is used to configure the session state features. To change the
default timeout, which is 20 minutes, you have to add the following code snippet to the
web.config file of an application:<sessionState timeout="40"/>
100. Which method do you use to kill explicitly a users session?
The Session.Abandon() method kills the user session explicitly.
114. What is the difference between a HyperLink control and a LinkButton control?
A HyperLink control does not have the Click and Command events; whereas,
the LinkButton control has these events, which can be handled in the code-behind file
of the Web page.

Printed