What is the scope of an HTTP session?

Question

What exactly is the scope of an HTTP session?

I\'ve been googling this but can\'t seem to get a straight answer- A session is supposed to get cleared out \"when a us

Answer 1

Session cookies are usually deleted when the whole browser exits. Since multiple tabs/windows share the same cookies, those tabs/windows will use the same session.

However, an application could also pass the session identifier through the URL. In this case every tab/window would have its own session as long as you don't open it through a link with a valid session id.