session lost when switching from http to htps

leo25in

i run a site which has a session and certain session variables registered.
the site has some pages on "https".
so when i try to access the pages on "https" the session variables are lost.
can someone shed light on this

Duey

The session ID is usually stored in a cookie, cookies are stored by URL, so if the URL changes the cookie will not read. You need to pass the session id along the URL.

eg:
$url = "https://www.mysite.com/post.php?".SID

🙂 hope this helps...

But on the other hand im pretty sure im wrong 😃..in this case you probably need to have the user login under HTTPS 🙂

leo25in

actually i have shopping cart class object stored in a session variable.
so i need this object for final database updations . which are done on a https page

Weedpacket

I remember this question coming up before. Wait a minute, let me search the forums. Let's see --- keywords: http https session. That seems like a place to start.

leo25in

think got the solution

serialize the object

post it to https for(base64 encoding the serialized object a better way) since problems passing it in hidden since the serializd value has double quotes in it

retrieve the posted value
base64 decode it
unserialize it
and the object is alive again!!!!!

Weedpacket

Originally posted by leo25in
think got the solution

serialize the object

post it to https for(base64 encoding the serialized object a better way) since problems passing it in hidden since the serializd value has double quotes in it

retrieve the posted value
base64 decode it
unserialize it
and the object is alive again!!!!!

Or store the session_id in the hidden field. A bit safer I would have thought.