I am using MVC3 along with Autofac & EF4.1 to build an secure web app deployed on two servers.
A very few users are experiencing a strange issue where user is logged into system as wrong user with different account/branch settings.
I am authentication user using form authentication(.ASPXAUTH cookie) and roles are decided from active directory contents. user being logged in is assigned an unique token which flows during all transaction.
Could this be related to Autofac or authentication cookie is cached somewhere?
it was actually a static image file having set-cookie inside which was causing the trouble.