Session.Abandon() http://msdn.microsoft.com/en-us/library/ms524310.aspx Here is a little more detail on the HttpSessionState object: http://msdn.microsoft.com/en-us/library/system.web.sessionstate.httpsessionstate_members.aspx
Clear – Removes all keys and values from the session-state collection. Abandon – removes all the objects stored in a Session. If you do not call the Abandon method explicitly, the server removes these objects and destroys the session when the session times out. It also raises events like Session_End. Session.Clear can be compared to … Read more
In the <system.web> element, add the following element: <httpCookies requireSSL=”true” /> However, if you have a <forms> element in your system.web\authentication block, then this will override the setting in httpCookies, setting it back to the default false. In that case, you need to add the requireSSL=”true” attribute to the forms element as well. So you … Read more