I am creating a little ecommerce site which has a secure basket. The user can add the item/items to the basket and move to the checkout. The checkout transfers the user from the http to the https via a php header location. This works fine and the user can carry on and complete the order.
How ever if the user click a link thats not the checkout step two they are redirected to the http. This is also done with the header location. However once redirected and they are at http://sitename.com/page
the the contents of the basket have been removed.
The session is only removed in IE. Firefox is fine.
Anyone one got any ideas as to what it could be.