Subdomain session still not working

Question

Subdomain session still not working

A few hours ago, I created a thread here regarding a session that no longer exists when going to www. This should fix this:

session_set_cookie_params(0, '/', '.'.$_SERVER['HTTP_HOST']);

According to a few examples on php.net and other sites this should be correct. When you go to the site without using www. and then switch to www., the session is still working (I am still recording it), but for some very strange reason it is not possible to create a session (to log in) on the website when using www. Now.

So, I can log in when I do not use www., I can switch to www. so the session still exists, but I cannot log in when using www.

Can someone explain this behavior and how can I fix it? Also, is this secure server used?

Thank!

+3

php session

Bv202 Mar 15 '11 at 16:35

source share

2 answers

Probably $_SERVER['HTTP_HOST'] www.example.comnot example.com. If you want to test it, you can always make a hardcode by replacing $_SERVER... with the actual one '.example.com'.

+1

Sam starling Mar 15 '11 at 16:49

source share

Gumbo · Accepted Answer · 2011-03-15T16:46:24+0000

If you request a certain resource from the site www.example.com, the cookie will be set from .www.example.com, so it will be valid only for www.example.com and all its subdomains, but not example.com.

Just remove the lead www.before adding ., for example:

$domain = '.' . preg_replace('/^www\./', '', strtolower($_SERVER['HTTP_HOST']));

Subdomain session still not working

More articles: