I want my website to have a secure login page, but once logged in I want to redirect to a non secured page as the only sensitive info is the login user/pass. The problem is the cookie made when I sign in with the secured page can't be read by the non secure page so the login doesn't work. What's the easiest way to transfer the login cookie to the non secure page? One solution I thought of is to save on the server database that user X has logged in say at 4:47:22 from IP 1.2.3.4 and then the unsecured page checks the database to see if the user was successfully logged in in the last 30 seconds and if it's from the same IP then set the cookie as the user being logged in. Is this the best way to achieve what I want and is it secure? Thanks