i bet you are testing without the www in the URL.
what you are describing will happen if you leave of the www:
when the redirect goes to;
this is a different domain as far as the session cookie is concerned, so a new session is started.
you can use an htaccess rule for your site if it apache hosted to force all traffic to the www address: