I'm running Apache 2.0.47, PHP 4.3.3 on RedHat 9.0 on a new server.
I have a series of pages that let's say pages 1 -> 3 are non-ssl and 4-8 are
SSL but the URL domain is different (shared SSL).
The client clicks through them from one to another in order using forms and
URLs with GET vars.
The client starts a non-ssl session on pg. 1 using
www.mydomain.com. When they
get to
pg. 3, a hyperlink with an SSL URL and session ID as a GET var, they click on
it to get to pg 4 which is now
under
https://secure
..hostingdomain .com/mydomain.com/pg4.php?PHPSESS IONID=kjsfhljdh fakdjhfladkfh
PHP picks up all the session vars just fine. The person proceeds to pg. 5, then
6, then 7 all in order under
the SSL URL given above except the session ID attached which was only present
on the switch between
pg. 3 and 4.
When they click on to go to pg. 8, the session is gone as well as all the
session vars. Yes I do have a session_start
on every page. It seems that the previous session just disappears or resets.
Now this series of pages works fine under Apache 1.3.28, PHP 4.3.3, and RH 7.3
on a different server. So
there is nothing wrong with the coding since all I did was copy the pages to
the new server.
On the new server, I have trans_sid turned on. Cookies are also turned on and
"cookies_on ly" is off.
The PHP settings on both servers are identical. I was originally running Apache
2.0.40 which is what RH 9.0
came with out of the box. But the sessions disppeared earlier in the sequence
using it. The session would
disappear by pg. 6 or 7.
When I turn off the use of cookies in PHP, the session doesn't seem to carry
through at all. But I'm not
100% sure since I can't remember what exactly happened in this scenario.
Some people say that Apache 2.0 and PHP 4.x.x run fine, but that is not what
I'm seeing. I'm thinking of
going to Apache 1.3.28 on the new server.
Anybody else have any clues as to what is going on?
TIA.
Alex
