Login Session problems with Shared SSL

[rhubarb]

When I login as a user, and the url in the address bar correctly changes to that of the shared secure server, but as soon as I navigate elsewhere on the site it thinks I'm logged off, so I can't access the checkout.

 

I have another live osc MS2 shop working ok with the same shared secure server and similar config settings. Settings as follows:

 

Administration > Configuration > Sessions:

 

Session Directory = /tmp

Force Cookie Use = False

Check SSL Session ID = True/false - (tried both)

Check User Agent = False

Check IP Address = False

Prevent Spider Sessions = True

Recreate Session = True

 

configure settings:

 

define('HTTP_SERVER', 'http://www.<domain>');

define('HTTPS_SERVER', 'https://dnslinux.co.uk/~<package name>');

define('ENABLE_SSL', true);

define('HTTP_COOKIE_DOMAIN', 'www.<domain>');

define('HTTPS_COOKIE_DOMAIN', 'www.<domain>');

define('HTTP_COOKIE_PATH', '/<catalog dir>/');

define('HTTPS_COOKIE_PATH', '/<catalog dir>/');

define('DIR_WS_HTTP_CATALOG', '/<catalog dir>/');

define('DIR_WS_HTTPS_CATALOG', '/<catalog dir>/');

 

define('USE_PCONNECT', 'false');

define('STORE_SESSIONS', 'mysql');

 

If I set ENABLE_SSL to false then the login works ok.

[rhubarb]

I don't know if this was the problem but in configure.php I removed the www's in the settings for:

 

HTTP_SERVER

HTTP_COOKIE_DOMAIN

HTTPS_COOKIE_DOMAIN

 

( I had http://www.domain.co.uk now I have http://domain.co.uk) and it's working ok now.

 

Thanks.

[KennethS]

You are correct, to get the www.domain.co.uk to work you would have to buy another cert, or get a wilcard cert which would cover all *.domain.co.uk.

[rhubarb]

I'm still getting this login problem and when I do the only solution is to login again in a new browser window. Also it always requires another login before the checkout; this must be something to do with the SSL server not seeing the register of sessions.