What Cookie http request header in JSESSIONID that?
This is an insurance policy is required because the default Cookie Session support.
But some customers Cookie browser is closed at this time you need to specify the session identifier in the URL on the server.
http itself is not in session, the client can not track information, in other words: http protocol no matter who join themselves.
In order to achieve the session, the browser must support. Browser cookie can store session, which is the most common practice.
But if I write a browser in full compliance with the http protocol, but does not require the server with the session, the server will not be able to generate session.
Fortunately, the current browsers support session requirements, even if you close the cookie, the browser will pass sessionid to the server, the id is stored in the memory space in the browser, the cookie is not saved on the hard disk.
In http message format inside the cookie and the session is in the same package file location on if ie find Bowen which contains information about cookie / session, then, he will decide whether to save the information according to the security level, for example, if the security mechanism it allows the use of cookie information ie the cookie will be saved to a temporary file inside, information about each file request to the server at the time of receipt of the session will be added to the request message inside, which is the principle session to save the information.
If the security mechanism does not allow the use of the cookie, even though ie received a cookie and session information, the cookie information is not written to the temporary file, ie when requested server files again, nor will receive the information session added to the request packet inside, the server can not know the information of the session.
This paper from wood village network blog > What Cookie http request header in JSESSIONID that?