This page discusses - CookiesThis page discusses - Cookies
In this example we are going to set the cookie.
HttpSession session = requsest.getSession();
Inside the service method we ask for a session, and everything happens automatically. We don't need to make a new Cookie object. We don't have any need to associate the session id with the cookie. Even there is no need to set the cookie into the response.
Cookies are just a name/value pair which gets exchanged between client and the server. When the client sends the request to the server for the first time the container generates a unique session id. The server sends the cookie to the client