pizza
Well-known member
i've noticed that the forum's accessible from https://garagejournal.com/forum and https://www.garagejournal.com/forum
for one thing, since you're using host-only cookies, a user's session won't persist across domains.
if he logs into www.garagejournal.com and then follows a link to garagejournal.com, he'll find he's no longer logged in. this is actually how i noticed the issue.
suggestion: configure your httpd to do a 301 redirect from garagejournal.com to www.garagejournal.com
this is the preferred solution, and i don't see any unintended side effects.
alternatively, you could fix the cookie issue by using the Set-Cookie header and explicitly defining "domain=garagejournal.com". this allows cookies to be shared between garagejournal.com and its subdomains.
a redirect is much cleaner, however.
for one thing, since you're using host-only cookies, a user's session won't persist across domains.
if he logs into www.garagejournal.com and then follows a link to garagejournal.com, he'll find he's no longer logged in. this is actually how i noticed the issue.
suggestion: configure your httpd to do a 301 redirect from garagejournal.com to www.garagejournal.com
this is the preferred solution, and i don't see any unintended side effects.
alternatively, you could fix the cookie issue by using the Set-Cookie header and explicitly defining "domain=garagejournal.com". this allows cookies to be shared between garagejournal.com and its subdomains.
a redirect is much cleaner, however.