Cross-domain authentication and http cookies
When double cookie is enabled, CDA works only with secured cookie.
Precisely, if user comes from a cross-domain http URL, he is redirected to portal, then portal redirects him to that URL with lemonldaphttp=XXX in query string (assume cookie name is 'lemondlap'), but handler expects lemonldap=XXX.