Reputation: 493
How does Cookies session management using JSESSIONID happens in HTTPRequest Response in java?
How does cookie based authentication happens once the cookie with JSESSION ID is generated?
Does the server maintains the session ID in some Data base and then for future requests it checks there?
Is there any mapping of user to session id maintained so that the user+jsessionID identifies the user ?Or is it only Jsession ID maintained?
In my code, JSessionID is set up to be same as httprequestServlet sesion ID. How does this session ID generated?
Upvotes: 0
Views: 540
Answers (1)
Reputation: 9384
You may want to check out the fine Servlet Specification. Version 3 is not the latest, however the principles never changed. Check out chapter 7 of https://download.oracle.com/otn-pub/jcp/servlet-3.0-fr-eval-oth-JSpec/servlet-3_0-final-spec.pdf?AuthParam=1637010431_ae15081d6634353e73671a4b2e5ad227
Upvotes: 1
Related Questions
- Session Handling in servlet using JSESSIONID cookie not getting session
- How is JSESSIONID passed? As a header parameter or as a cookie parameter?
- jsessionid passed in url if cookie and jsessionid stored by browser
- What is the concept of saving session id in cookie?
- When is the JSESSIONID cookie added to the response
- setting Cookie: JSESSIONID on client request manually
- JSESSIONID is set for both HttpOnly and Secure
- HTTP Cookie Request Header sequence of events
- How do you avoid using jsessionid?
- How the session cookie is maintained by browser