I’ve notcied some discrepancies while testing Spring authentication and wondering why it has happened.
I’ve noticed discrepancies between JSESSION Cookie in a browser and sessionID I can see in server logs.
Every time I authenticate, JSESSION Cookie is different than session on the server.
Why is that? Is it expected behavior? I suppose they should be the same every time?