From a session perspective, the session cookie (the browser side of the session) for https://www.mysite.com is *not* shared with the session cookie for http://www.mysite.com. If crossing from one to the other, therefore, there are 2 options:
1) User has to log back in after the switch 2) The switch has to pass along the session code, for example: <cflocation url="https://www.mysite.com/welcomeBack.cfm"; addtoken="Yes" /> You can add the session token manually (cookie.cftoken and cookie.cfid) but the addtoken attribute of cflocation will automate it for you, if you're using that tag. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:331955 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
