This is a continued post that I have already posted, but I just want to start from the top, since the last post talked about other issues. Any new help or suggestions would be huge for me.
I have a website that has to be approved by somebody behind a proxy server. I uses sessions, and none of the session data is being carried over. From their end they have tried excluding our domain from the proxy server, and that seems to work, but there are still issues. And they say they don't wan't to exclude any sites from their server.
Here are the solutions I have tried so far...
Header Info: I added the following code to the header of my scripst - header('Cache-control: private, must-revalidate');
This was recomended that it work around the proxy server, but this doesn't work.
Passing session ID through a hidden form field through a post: I built a version that passed the session ID throught a hidden field on every page. This would allow the site to avoid using cookies or any temporary files stored on the users computer. I tested this on our side with cookies dissabled and it worked. With cookies dissabled I could not log in to yahoo mail or other popular websites. I think it is a standard practice that if you can't store cookies site's won't work. I want to still be functional with or without cookies, but this is still not working on the proxy server.
I know it is common practice to use cookies and if the user doesn't have cookies enabled then tough luck, but that just won't fly when the guy approving the project can't even see the website correctly. If anyone has any other solutions for me I would greatly appriciate it.
Thanks in advance!
