I would download either Fiddler2 or Fiddler4 and install it on the computer. I would close all browser sessions, then flush browser cache. I would then start a Fiddler trace and then logon to the site.
I could take a look at the Fiddler Trace and analyze the flow. This should be a simple HTML Form Auth. I'd expect to see a flow something like:
=================================
[Initial GET to Trawler Forum from the web browser]
-> REQUEST: GET
http://www.trawlerforum.com/forums/ HTTP/1.1
-> RESPONSE: HTTP/1.1 200 OK
(
http://www.trawlerforum.com/forums/) is returned to the web browser
------------------------------------------------------------------
[GET resulting from 'clicking' the "Click Here to Login" link (button)]
-> REQUEST: GET
https://www.trawlerforum.com/forums/misc.php?do=login HTTP/1.1
Referer:
http://www.trawlerforum.com/forums/
-> RESPONSE: HTTP/1.1 200 OK
------------------------------------------------------------------
[Submitting credentials (User Name and Password) and clicking the "Log In" button.]
REQUEST: POST
https://www.trawlerforum.com/forums/login.php?do=login HTTP/1.1
Origin:
https://www.trawlerforum.com
RESPONSE: HTTP/1.1 200 OK
(POsting credentials is successful
------------------------------------------------------------------
[Server redirecting the web browser back to the protected resource (page) the request originated from.]
-> REQUEST: GET
https://www.trawlerforum.com/forums/ HTTP/1.1
Referer:
https://www.trawlerforum.com/forums/login.php?do=login
-> RESPONSE: HTTP/1.1 301 Moved Permanently
Location:
http://www.trawlerforum.com/forums/
(Web Server response is redirecting web browser from https to http.
------------------------------------------------------------------
[WEb Browser request for the http resource as a result of the server redirect.]
REQUEST: GET
http://www.trawlerforum.com/forums/ HTTP/1.1
RESPONSE: HTTP/1.1 200 OK
web page is returned and user is logged in.
------------------------------------------------------------------
simply indicating that it is 'not working' is not enough information. We would need to understand WHERE in the flow it is failing. We would need to determine if the request is not being sent from the browser, or if the browser is not recieving a response from the server. If so, during which step in the transaction??