This might not be able to be done, but thought I'd see if anyone had any ideas. I'm going to run GMail and when people sign up they will be able to get a free or premium account. What I want to do is when they sign up, if it's for a premium account do all the regular processing that GMail would normally do to set up the account. But, since I'm running multiple domains, my secure server certificate is only good for one of them. So I want to take a few of the variables used when signing up (users' name, login, domain, password) and send that off to a page on the secure server, actually, a script on the secure server so that they can enter their credit card info there and submit. I'd rather not pass the variables in the url string because I am passing the password over to the other script, and the url would end up in the history file for the browser which isn't too secure. I want to make it easy for the user and they will have a username/password for the secure payment process which I need to have matched up with their login name and password so when the results come back, I know which account to set up the additional premium features for. Another option I thought of is to just pass the account id in the string and then do a select on the db for that account. But while I could add a referrer check for security, that's probably a bit to easy to spoof, so I 'm not happy with the security level there. I'm not sure yet if the two domains will be on the same physical box or not yet, but they will certainly be on the same network.
Anyone have any ideas?
Anyone have any ideas?