|
|
Posted by Samir Chouaieb on 06/10/07 14:05
Hi,
thanks first of all for your answer.
> No, it's not. Cookies are designed to be domain specific.
> For security reasons, the browser won't send a cookie
> belonging to one domain on to another domain.
You took only the cookies into consideration as a way to store session-ids.
> If all of these sites are so closely related, why are they
> different sites?
Take as an example a set of partner online shops that have a central
login mechanism.
If the login pages of the online shops call a dedicated php-page on the
main domain that achieves the login if not done aready and gives the
session-id back to the referer page in the url or as POST variable.
if the different shops have the same php-path for session variables on
the main-domain server, then they will be able to read the content of
the session.
Does this make a sense. Or am I dreaming?
Regards
Samir
Jerry Stuckle wrote:
> Samir Chouaieb wrote:
>> Hello,
>>
>> I am trying to find a solution to a login mechanism for different
>> domains on different servers with PHP5.
>>
>> I have one main domain with the user data and several other domains
>> that need a login to show data.
>>
>> I want the user to login only once when he visits any of my domains.
>>
>> The first idea is had is to use the same session for all domains. Is
>> this possible?
>>
>> Any help or hint is appreciated.
>>
>> Thanks in advance
>>
>> Best regards
>> Samir
>
> No, it's not. Cookies are designed to be domain specific. For security
> reasons, the browser won't send a cookie belonging to one domain on to
> another domain.
>
> If all of these sites are so closely related, why are they different sites?
>
>
Navigation:
[Reply to this message]
|