我们知道session 实现有好几种机制,比如cookie, url-rewriting, etc.  

When cookie is disabled on client side, most of time we can refer to use response.encodeURL or encodeRedirectURL to add a param jsessionid to identify the client and context.