Good afternoon. I have an application running on the internet and I would like some pages to be run by https and not http. I'm testing like this: I enter the application on an http page. This http page calls an https page. When I enter this page https I have verified that the session variables are lost. Is this the way it works or am I doing something wrong? Can I do this, call only a few pages via https or do I have to run the entire application on https? Thank you
accessing a page via https loses session variables?
0
asked by anonymous 21.03.2016 / 18:53
1 answer
0
There can be three problems there.
1. Different domain or subdomain between HTTP and HTTPS
The pages are most likely to be in separate domains or subdomains. This is not a matter of HTTP / HTTPS itself, but rather the browser considers them to be two distinct servers, and therefore does not forward the cookie
21.03.2016 / 19:40