session variable in secure directory
I store a shopping cart in a library stored on the server as a session variable. My host, brinkster, has provided a secure dirrectory with it's ssl certificate. When the user logs in on a page in the https directory, the shopping cart session variable is no longer an object. Is this inevitable?
Should I pass the shopping cart tot he secure page as a text string in a form? Or is there a way to access the same session object from both directories?
Andy Kohlenberg
Jerusalem, Israel
Peter J. Boettcher posted this at 12:56 — 9th May 2002.
They have: 812 posts
Joined: Feb 2000
Is the SSL you're using in your domain (ie. https://www.mydomain.com) or is it Brinksters (ie. https://www.brinksterssl.com/mydirectory) ? You're probably going to a different server which would explain why the sessions aren't working anymore.
You could pass the session variables in a querystring, form submission, or temporarily save them in the db. Then pick them up again on the secure side.
PJ | Are we there yet?
pjboettcher.com
akohl posted this at 15:57 — 9th May 2002.
They have: 117 posts
Joined: Feb 2001
It's the latter. Thanks, I'll do what you suggest.
From what you say, it would be theoretically possible to to go from regualar http to https without loosing the session. Would I need my own certificate for that?
Andy Kohlenberg
Jerusalem, Israel
Peter J. Boettcher posted this at 16:00 — 9th May 2002.
They have: 812 posts
Joined: Feb 2000
If it's the same domain and the same server you should be able to use the same session. You would probably have to purchase your own SSL cert for this.
PJ | Are we there yet?
pjboettcher.com
Want to join the discussion? Create an account or log in if you already have one. Joining is fast, free and painless! We’ll even whisk you back here when you’ve finished.