Home/ Questions/Q 8043353
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-05T04:52:31+00:00

I have a website. People can login it on here sub.domain.com If they login

  • 0

I have a website. People can login it on here

sub.domain.com

If they login here, the session will do its job and user will be logged in. On any page at sub.domain.com, the session value be will returned so it will work fine.

But site can also be reached from http://www.sub.domain.com . When user logins at sub.domain.com, the session value is empty at http://www.sub.domain.com.
I mean if user logs in at sub.domain.com,
When he navigates to http://www.sub.domain.com, site will say ‘please login’, but user was already logged in at site without ‘www’.
Hope it was all clear, thank you.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Add in your main script at the top, before session_start.

     ini_set('session.cookie_domain', '.domain.com' );

    If you running PHP with suhosin enabled, try disabling there settings too

      ini_set("suhosin.session.cryptdocroot", "Off");
  ini_set("suhosin.cookie.cryptdocroot", "Off");

    Source PHP bug tracker

    Thanks to @RandomDave

    You could dynamically determine the domain from $_SERVER[‘HTTP_HOST’] so you don’t have to hard-code the domain name

      ini_set('session.cookie_domain', strtolower(substr($_SERVER['HTTP_HOST'], 0, 4)) == 'www.' ? substr($_SERVER['HTTP_HOST'], 3) : '.'.$_SERVER['HTTP_HOST'] );
    • 0