PHPSESSID and passing to fqdn

johnh

I've been looking for a way to pass the PHPSESSID between websites of mine. I've seen mention that passing a SID onto another site could be a security issue, but not when it's one of my own sites (I don't think so anyway). And so I've been trying to pass the autocreated PHPSESSID between my sites (a.mycompany.com - b.mycompany.com) without any luck because of the resetting of the PHPSESSID var.

I've tried the simple way of <A HREF="http://b.mycompany.com/index.php?$PHPSESSID">New Link</A>, and I still got a new SID.

Thanks for the help,
John

rdflterr

I am having the same problem. The cookies do not stick between domains, which makes sense, but interestingly this means you can not pass in PHPSESSID= variables, because the cookies override them.

Anon

I was able to overcome this since I also used a database. I would give the visitor a "visitor_id" and I would pass this between domains (www.domain1.com?visitor=10) and when the visitor went to a new domain, the system would look up the username, password, and any other session variables that were set.

John

Darren S wrote:

I am having the same problem. The cookies do not stick between domains, which makes sense, but interestingly this means you can not pass in PHPSESSID= variables, because the cookies override them.