Cross Site Session Variables

Forum Moderators: coopster

Message Too Old, No Replies

Cross Site Session Variables

paulmadillo

2:41 pm on May 7, 2008 (gmt 0)

Hi.

I'm setting up an e-commerce site and now I want to accept payments on my secure server which is on a different domain.

The problem is that my cart uses session variables from a different domain than the one that I want to accept payment form (my secure server).

Is there a way to read session variables from a different domain ie: share the session variables?

henry0

5:23 pm on May 7, 2008 (gmt 0)

You could review this thread [webmasterworld.com]

PHP_Chimp

8:14 pm on May 7, 2008 (gmt 0)

The other option is something similar to how PayPal use there buy now buttons. If you encrypt the data then you can pass it over to the other domain using GET or POST.

If you are going to do that then you had also better sign the information. As this would help to stop other people sending encrypted info to your server.

So you would need to look at the mycrypt [php.net] functions and openSSL [php.net]. This would not be for the faint of hart but is another way to get around the problem.