At work I was given a task to modify some existing classic ASP/javascript login pages. Basically I had to take an existing report that required login authentication, pass its URL to a central login page which if successful set a session variable to true, and then redirects back to the original report page so the user can view it. So far so good - my test environment works.
I ran into problems, though, when I found out the production environment has the reports on a different subdomain than the authenticating login page. Apparently session variables don't pass between subdomains? Or am I assuming wrong?
Anyway, assuming that session variables DON'T transfer between subdomains, I thought I might be able to go with cookies to transfer the authentication status between the subdomains. Can this work? When I set up the cookie, can I just set the domain property to ".mydomain.com"? I ask because that didn't seem to be working earlier when I tried it. There may or may not already be a cookie that is being used for the domain, I'm not sure. Could there be conflicts there? Maybe there's a better way to be handling this? Any thoughts or ideas? Thanks!
I ran into problems, though, when I found out the production environment has the reports on a different subdomain than the authenticating login page. Apparently session variables don't pass between subdomains? Or am I assuming wrong?
Anyway, assuming that session variables DON'T transfer between subdomains, I thought I might be able to go with cookies to transfer the authentication status between the subdomains. Can this work? When I set up the cookie, can I just set the domain property to ".mydomain.com"? I ask because that didn't seem to be working earlier when I tried it. There may or may not already be a cookie that is being used for the domain, I'm not sure. Could there be conflicts there? Maybe there's a better way to be handling this? Any thoughts or ideas? Thanks!
Facebook
Twitter