We have a dedicated Windows Server 2008 server for ASP.NET e-commerce website. Both our beta and production sites run on the same server although under different sites and app pools.
www.site.com and beta.site.com
Both sites have the same code base (both asp.net code and database). All pages are non-SSL except for the checkout page (checkout.aspx).
In beta, when clicking "checkout", I get redirected to the SSL page, and if I click on view my cart, it redirects back to the non-ssl cart page and all session variables remain okay.
In production, when I do the same a new session is created and I lose my cart. This is not the desired effect obviously.
Any suggestions on how to remedy this?