(keitai-l) AU Phones, Cookies and SSL

From: Curt Sampson <cjs_at_cynic.net>
Date: 08/11/05
Message-ID: <Pine.NEB.4.62.0508111622550.19142@angelic.cynic.net>
On mobile.tabemo.com I have some pages where I accept credit card
information, and of course I want to make certain that the user is
using an SSL connection for them. So if a non-ssl connection is made to
certain pages, I issue a redirect to the same page but prefixed with 'https'.

Unfortunately, AU phones appear not to return the cookie I sent them
over an http connection when they connect again via https. (Mozilla
doesn't have this problem.) This isn't proper behaviour, is it? Does
anybody have any thoughts about how to deal with this?

cjs
-- 
Curt Sampson  <cjs_at_cynic.net>   +81 90 7737 2974   http://www.NetBSD.org
      Make up enjoying your city life...produced by BIC CAMERA
Received on Thu Aug 11 10:27:48 2005