Strange session id problem

[Tech-E]

I found a strange problem related to the session ID. A customer complained that they could not log into their account. I found that when the session ID exists in the URL, such as when they hit the home page first and then click on Log In, they cannot log into their account. They are just returned to the home page and the nav bar does not display the My Account link.

Once they get past that point and the session ID is gone from the URL, they can log in.

If I cannot disable the session ID in the .htacces file, is there any workaround for this?

Any ideas?

[Ajeh]

I cannot repeat this problem ...

What version Zen Cart?

Clean install or an Upgrade?

Have you an URL where we can see this actually happen?

[kuroi]

... and are you using an SEO URL mod?

[Tech-E]

I'm using 1.3.8a and it was a clean install.

Yes, I am using SEO URL.

It is a strange problem because I don't see how the session ID in the URL would do this.

http://www.gadgethq.com/

Perhaps it is related to the cookie, but the session cookie should exist by the time someone hits the login page.

It does this with both IE and FireFox.

It you click on a few links before you try to log in, the login works as expected.

[Kim]

We have had reports of similar problems using one of the SEO mods - If you turn it off is there still a problem?

[Tech-E]

I cannot turn it off right now. It is a live site that is getting tons of Christmas traffic because I've got some hot items and a lot of top positions for product pages in Google.

Perhaps I can try that at 1 AM or after Christmas.

Thus far there has been only one customer complaint and I am getting repeat orders. Most repeat customers would probably never notice it because they hit several pages and add items to the cart before checkout.

It certainly could be related to SEO URL.

[CJPinder]

For the moment just turn off Recreate Sessions in Admin. Go to Admin > Configuration > Sessions and set Recreate Session to False.

Regards,
Christian.

[DrByte]

For the moment just turn off Recreate Sessions in Admin. Go to Admin > Configuration > Sessions and set Recreate Session to False.

If you do that, you'll want to pray that neither you nor your customers shares any URLs with a zenid in them ...

[CJPinder]

If you do that, you'll want to pray that neither you nor your customers shares any URLs with a zenid in them ...

Very true. I wouldn't suggest it as a long term fix. Just a short term fix until he can try turning off the SEO URL mod and do some trouble shooting.

Regards,
Christian.

[Tech-E]

Thanks for the ideas.

I'll have to play with this further when I'm up some time in the middle of the night. I've got so much traffic right now that I don't want to risk anything until things quiet down.

The Christmas rush is the wrong time to experiment.