Ecommerce has it's own session cookie which is kept same for either http/https for most cases (as far as I remember). Anyway, switching between http and https has not been a problem with ecommerce on oacs 5.1.