We've got a Facebook application that is embedded in a Facebook canvas page and therefore it is loaded inside an iframe. The application itself holds a flash, put in tag.

What happens is that when Http requests are made via the flash, cookie is not included in the request headers, so the server can't determine which the session is. This happens only in IE, with other browsers this problem is not reproduced.

I examined the requests made via IE and Chrome and they differ in several things, most notably in the absence of Cookie parameter in the IE one.

Would you please assist? Big thanks!

I found a solution for the problem - you can check it over here > IE always sending the same jsessionid over time (using Java Wicket)

I created a new thread there since I didn't think the question was asked correctly here.