Need Help with SSL (Passing PHPSESSID) Across Domains

[Dano]

Hello, all!

I have a domain - http://www.domainname.com - that shows a host of
products. A user can add items to a shopping cart, then when he wants
to checkout and order the products in the shopping cart, I take him to
https://secure.domainname.com/filename.php?phpsessionid=$PHPSESSID. I
pass the session id variable in the URL, and it's SUPPOSED to recreate
the session variables in the new URL.

I use the same code on other sites, and it seems to work fine. But on
this one, it doesn't hold the session ID, and we lose all the
user-entered data, (name, shipping address, etc.)

Any suggestions as to what I'm missing? Like I said, it's virtually the
same code I use on other sites, but it isn't working now in this
instance.

Thanks in advance for your help!

Dan Ford

[www.j2be.com]

> https://secure.domainname.com/filename.php?phpsessionid=$PHPSESSID

From this sample I can suppose that you are using register_globals set to
"on"
on all the websites so by putting $PHPSESSID is working.

You should use something like $_GET['PHPSESSID'] to get the session value
from the GET method.

For more things please post your source code (on a website) and tell us if
you are using register globals and other things.

Regards

Leonardo Armando Iarrusso