My understanding from
meaning of regenerateExpiredSessionId="false" was that if a session id expired it will NOT be re used if client requests an url with same id.
And mening of regenerateExpiredSessionId="true" was that if a session id expired it will be re-used (recycled) if client request an url with same id.
But when i read post at
http://stackoverflow.com/questions/392272/regenerateexpiredsessionid-not-working-as-expected
it seems that i misunderstood what regenerateExpiredSessionId="true" means.
Can some one explain which is right?