I have an odd situation that's come up on my production server. However, it's not a problem in my local development environment. Here's a test script with which I can replicate the problem:
<?php
session_start();
$_SESSION['test'] = 'test';
echo 'session_id(): '.session_id();
session_write_close();
?>
<form method="POST">
<input type="submit" value="Post to self" />
</form>
If I load this page in my browser, and refresh the page (CTRL+R), I'm shown the same session_id() value each time.
However, if I then click the submit button, I get two different outcomes:
- Development: the same
session_id()value (the expected outcome). - Production: a different
session_id()value.
Further, on the production server, if I then reload the page again I get the original session_id() value back.
How do I get the production server to persist the session_id() value? Any advice would be greatly appreciated.
Thanks!
Details From Comment: In the basic example I posted, it's like this:
array(5) {
["lifetime"]=> int(0)
["path"]=> string(1) "/"
["domain"]=> string(0) ""
["secure"]=> bool(false)
["httponly"]=> bool(false)
}
In the actual production code it's like this:
array(5) {
["lifetime"]=> int(0)
["path"]=> string(1) "/"
["domain"]=> string(0) ""
["secure"]=> bool(true)
["httponly"]=> bool(true)
}
(I'm using HTTPS in production).
