session and SSL

Re: session and SSL

No, but not because of SSL, but because you're changing domains.


--

Ray at home
Microsoft ASP MVP


"shank" <shank@tampabay .rr.com> wrote in message
news:u8KEiK19DH A.340@tk2msftng p13.phx.gbl...[color=blue]
> Will Session() (created in SSL) hold its value in SSL, when you go from
> https://abc to https://xyz and back to https://abc ? Mine does not appear[/color]
to[color=blue]
> retain its value.
>
> thanks
>
>[/color]

Re: session and SSL

Are you getting back to the original site within the Session timeout?
Remember that when you access the last page on abc and go to xyz the timer
is running on your abc server and if you don't get back to the same site in
the same browser process within that time then your session will have gone.

"shank" <shank@tampabay .rr.com> wrote in message
news:u8KEiK19DH A.340@tk2msftng p13.phx.gbl...[color=blue]
> Will Session() (created in SSL) hold its value in SSL, when you go from
> https://abc to https://xyz and back to https://abc ? Mine does not appear[/color]
to[color=blue]
> retain its value.
>
> thanks
>
>[/color]

Re: session and SSL

My transfer time is a few seconds, maybe 10. The issue is that I have 2
shopping carts on one site. I have 2 totally different lines of product that
must be handled in separate fashions. Different drop shippers. Different
shipping options. I'm trying to use one merchant account to collect credit
card info for both. So far, I'm only able to get 1 response from my cc
authorization company. Either yeah or nay. Somehow, assuming authorization
is successful, I need to take one set of actions for cart1 or a totally
different set of actions for cart2. So far, I am not able to carry a
Session("cartna me") into the response page. The process is....

https://pay.asp ---> https://developer.skipjack.com/scripts/EvolvCC.dll --->


How should I be doing this? I sure as heck do not want to get 2 merchant
accounts or do I lot of manual labor on the backside. One user suggested
that it's not possible to carry across domain names. Is that true, or is
there a way around this?
thanks

"Adrian Forbes [ASP MVP]" <sorry@noemail. zzz> wrote in message
news:uFlKXG29DH A.340@tk2msftng p13.phx.gbl...[color=blue]
> Are you getting back to the original site within the Session timeout?
> Remember that when you access the last page on abc and go to xyz the timer
> is running on your abc server and if you don't get back to the same site[/color]
in[color=blue]
> the same browser process within that time then your session will have[/color]
gone.[color=blue]
>
> "shank" <shank@tampabay .rr.com> wrote in message
> news:u8KEiK19DH A.340@tk2msftng p13.phx.gbl...[color=green]
> > Will Session() (created in SSL) hold its value in SSL, when you go from
> > https://abc to https://xyz and back to https://abc ? Mine does not[/color][/color]
appear[color=blue]
> to[color=green]
> > retain its value.
> >
> > thanks
> >
> >[/color]
>
>[/color]

Re: session and SSL

If the fulfillment script is called from the authorization service's server
then it cannot include the user's session cookie (because it doesn't have
it).

How do you specify your fulfillment script to the authorization service? Can
you include a querystring on it?

--
Mark Schupp
Head of Development
Integrity eLearning



"shank" <shank@tampabay .rr.com> wrote in message
news:Wm6_b.6553 1$jH.526253@twi ster.tampabay.r r.com...[color=blue]
> My transfer time is a few seconds, maybe 10. The issue is that I have 2
> shopping carts on one site. I have 2 totally different lines of product[/color]
that[color=blue]
> must be handled in separate fashions. Different drop shippers. Different
> shipping options. I'm trying to use one merchant account to collect credit
> card info for both. So far, I'm only able to get 1 response from my cc
> authorization company. Either yeah or nay. Somehow, assuming authorization
> is successful, I need to take one set of actions for cart1 or a totally
> different set of actions for cart2. So far, I am not able to carry a
> Session("cartna me") into the response page. The process is....
>
> https://pay.asp --->[/color]
https://developer.skipjack.com/scripts/EvolvCC.dll --->[color=blue]
> https://response.asp
>
> How should I be doing this? I sure as heck do not want to get 2 merchant
> accounts or do I lot of manual labor on the backside. One user suggested
> that it's not possible to carry across domain names. Is that true, or is
> there a way around this?
> thanks
>
> "Adrian Forbes [ASP MVP]" <sorry@noemail. zzz> wrote in message
> news:uFlKXG29DH A.340@tk2msftng p13.phx.gbl...[color=green]
> > Are you getting back to the original site within the Session timeout?
> > Remember that when you access the last page on abc and go to xyz the[/color][/color]
timer[color=blue][color=green]
> > is running on your abc server and if you don't get back to the same site[/color]
> in[color=green]
> > the same browser process within that time then your session will have[/color]
> gone.[color=green]
> >
> > "shank" <shank@tampabay .rr.com> wrote in message
> > news:u8KEiK19DH A.340@tk2msftng p13.phx.gbl...[color=darkred]
> > > Will Session() (created in SSL) hold its value in SSL, when you go[/color][/color][/color]
from[color=blue][color=green][color=darkred]
> > > https://abc to https://xyz and back to https://abc ? Mine does not[/color][/color]
> appear[color=green]
> > to[color=darkred]
> > > retain its value.
> > >
> > > thanks
> > >
> > >[/color]
> >
> >[/color]
>
>[/color]