During my reading of session management from Head First
JSP &
Servlet I found that there are two ways of session management.One is By help of cookies In case If client has not enabled it then URL rewriting is substitute.It means that while developing a web app we should encode each and every link.Because we at time of development even after development we are not aware of fact that whether our client will enable cookie or not So as alternate we should encode each link by
using <code>response.encodeURL()</code>
method .Is this true?