Thanks for the responses guys. Okay I tried taking the path attribute out and still no go. Session works fine as long as I stay within the same domain, however, as soon as I jump to the secure subdomain the entire session folds.
The next question i guess i would have is that is it a necessity to save the jsessionid to a cookie in order to maintain session state across sub domains or is there another way people are using. Thanks again, ------------------------------------- Phil Rasmussen Tourism Queensland (eCom) e: [EMAIL PROTECTED] w: www.qhx.com.au (Queensland Holiday Xperts) "Pat Branley" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > > Hi Phil > > what happens out of interest if you try it without using the path > attribute ? > > I did this same test with just a normal cookie variable (not jsessionid) > the other day and it worked. What i noticed about my code that was > different to yours was i didnt include the path variable. > > Pat > > > > Phil Rasmussen wrote: >> Hi Everyone, >> >> Just wondering if anyone has implemented a J2EE session management >> solution in any of their applications which involves a change of domain >> during the session? >> >> We are trying to implement jsessionid on an eCommerce site, and haven't >> really found a good way to manage the session without passing jsessionid >> through every url. The big problem occurs when a user jumps to the secure >> domain to make their payment and the session gets lost. >> >> J2EE session management is enabled in the administrator on the CF7 boxes >> and we are trying to get this session to stay alive by using a browser >> persistent cookie as follows: >> >> <cfif notIsDefined("cookie.jsessionid")> >> <cfcookie name="jsessionid" value="#session.sessionid#" secure="true" >> path="/" domain="bla.com.au"> >> </cfif> >> >> The session dies when the user jumps from www.bla.com.au to >> secure.bla.com.au >> >> Any suggestions would be appreciated. >> >> Cheers, >> Phil > > --- You are currently subscribed to cfaussie as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED] Aussie Macromedia Developers: http://lists.daemon.com.au/
