Page 1 of 1

Mind Boggler!!! any help? :)

Posted: Tue Jan 21, 2003 3:47 pm
by JPlush76
hey all,
I have an ecommerce site up right now and we have about 2,000 orders in since launching 2 months ago.

Most people have no problems at all but there have been about a dozen or so people who can't checkout.

I use cookies to set a session id which keeps track of everything in their shopping cart. So I create a session id and enter their items into the database... then when they look at their cart screen the items are in there. When they go to checkout its like it isn't reading that cookie id and says they dont have items in their cart.

However if they go back into their cart the items are there. Now like I said it only happens with a small percentage. I've talked to a couple of them and they had their cookies turned on so thats not the problem.

Any thoughts as to what possibly could cause this for some users?

Posted: Tue Jan 21, 2003 6:27 pm
by llimllib
any similarities between the reported cases? Same OS/browser combination? Time similarities?

Posted: Tue Jan 21, 2003 6:47 pm
by JPlush76
nope one had IE 5 and the other IE6 :(

http://63.205.100.36

I can't duplicate the problem from here though

Posted: Tue Jan 21, 2003 7:21 pm
by mr_griff
I had a problem similar to this once on an apache server. We didn't have the virtual host setup correctly and it would randomly drop the session when switching to https. It only affected IE users and was random.

These were the lines of the apache config we were missing:

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

Posted: Tue Jan 21, 2003 8:00 pm
by JPlush76
griff, that sounds exactly like whats happening here

I'll give that a shot tomorrow and hopefully that will fix it. Thanks!

Posted: Fri Jan 24, 2003 4:15 pm
by JPlush76
hmmm we already have that in our server config file afterall. damn

one suggestion I found was to add this on the ssl pages

header("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); // Date in the past
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT"); // always modified
header("Cache-Control: no-store, no-cache, must-revalidate"); // HTTP/1.1
header("Cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache"); // HTTP/1.0

seems to fix it for IE 5 but I still have to wait and see if any more complaints roll in since I can't duplicate it for the life of me