I have an web-app that uses _SESSION vars and it is done in PHP.
If you go to its page, you simply cannot login to it to see how it looks like and how it behaves
because _SESSIONS vars are lost. The Session Vars are lost just because Envato embeddes the app into its own page that says in the upper-right corner with green “Buy this app”.
I have purchased a SSL certificate so I now have HTTPS://.
Can someone pinpoint me to the right code that would make my app keep my SESSION vars thus being able to show my potential buyers how the app behaves?