I have a web page on www.domain1.com
, with an iframe that opens up a PHP-based site on www.domain2.com
When the application in D2 (www.domain2.com
However, once I click on another link that takes me to another page inside the same application, the PHPSESSID seems to disappear, and it prompts me to log into the application again (issuing a different PHPSESSID cookie).
This happens every time I click to change a page.
When I access www.domain2.com
directly (no IFRAME), the application works fine. I can login and browse through mulitple pages without any problem.
If I go into my cookie settings and accept all cookies for D2, then the application ALSO works fine. However, I don't want to force all our users to change their browser settings, and I do not have control over D1, so it HAS to be through an IFRAME.
This USED to work fine, too. We had an outside programmer working on an upgraded version of the application, and it seemed like after he made some "upgrades" this problem started happening. Now I'm trying to clean up the mess (he has no idea what he changed and suggests buying and adding a security certificate, which doesn't work when I test it using a self-signed cert).