Maintaining identity across IP addresses (non-SSL to SSL)

Question

I'm implementing an SSL page(s) for my subscribers so they
can add their credit card information. They are coming from a
non-SSL site 
http://www.sitenumber1.com/index.cfm
then when they click "upgrade" they get routed to
https://secure.sitenumber1.com/accountinfo.cfm . I need their
profile info such as name, tel, email, etc to be propagated across
to the SSL site. Because the non-SSL and the SSL have different IP
addresses the transit fails and asks the user to login again. When
I login and get to the index.cfm screen then click upgrade it bombs
out again and asks for the login information. I'm not a CF coder
and inherited this stuff so I'm trying to get it running with very
little expertise. Any help will be greatly appreciated.
 Thanks. Tom

Fetch · Answer

Most (if not all?) times when going from one website to another the 'session' that you have at Site1 cannot be moved over to Site2. I'd have to see your application to see what the best method for you would be, but the easiest way to do this would be to force them to goto the secure site whenever the login is being made so that the session is preserved. You could do this pretty easily with a CFLocation tag in the login page:

<cfset TheDomain=LCase(CGI.HTTP_HOST)>
<cfswitch expression=#TheDomain#>
<cfcase value="www.sitenumber1.com">
<cflocation addtoken="No" url="https://secure.sitenumber1.com">
</cfcase>
</cfswitch>

Note: I say this is absolutely the best answer in your case as you said you'd rather not do a lot of coding, and this is by far the simplest answer in that case.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded