I had a similar problem, with google. The problem could have been about the cookie's domain. My problem was this:
My urls on google looked like this: mysite.com/............ and on my server I had a redirect from mysite.com to www.mysite.com. And since the my logged in users cookie's domain was only available for www.mysite.com when someone would click a link on google the session was getting created again or something. So I changed to cookie's domain to .mysite.com and it all worked fine. I think on security level "low" there is no domain check. check php ini variable session_domain_check or something similar to this i dont remember now. And you can go read the session component php file under cake/libs... there is a part where it makes many calls to ini_set() -- View this message in context: http://cakephp.1045679.n5.nabble.com/Facebook-Session-Component-tp3047161p4760366.html Sent from the CakePHP mailing list archive at Nabble.com. -- Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions. To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php
