JSESSIONID is set by Java web application servers (for example Apache Tomcat) to identify a user's server-side session. This page covers who sets it, what it does, its duration, and the consent type.
Who sets it: Set by the site's Java application server—commonly Apache Tomcat (Apache Software Foundation) or other Java servlet containers running the web app.
What it does: Holds a session identifier so the server can associate multiple requests with the correct server-side session data (login state, cart, etc.).
Duration: Typically a session cookie deleted when the browser closes, unless the server is configured to set an explicit expiry.
Consent type: Classified as strictly necessary/essential for site functionality and usually set without optional consent.
To view this cookie in your browser, see /how-to-inspect-cookies-in-your-browser.
JSESSIONID is an essential session cookie used by Java servers to maintain server-side sessions and generally does not require optional consent.