I'm having a problem and I don't even know it it *is* fixable, let along how to
I have a section of my site which redirects to an HTTPS connection to a
different subdomain, so that users can safely make a payment. The redirection
works fine, and the payment process runs as expected, but when the user returns
to an http:// connection they are logged out. It seems that the session cookie
isn't being sent.
The situation is like this:
protocol: HTTP -> HTTPS -> HTTP
session: OLD -> OLD -> NEW
Now, I have my cookies set up to persist across subdomains, and that works
across the rest of the site, however as I say on returning from an https
connection, no cookie is sent by the browser and therefore a new session is
Is there some way I can set up cookies to persist across HTTPS *and back*?
What's surprising is that there's no problem with the switch *TO* HTTPS