It was asked me in an interview.
1. if I log In to any webSite. Then i close the browser. I open new browser and enter the same website url. what will happen?
2. if you answer "i will be on login page". then how server comes to know session is expired at client side.
I answered him that, when we close browser auth cookie is deleted. session remain active on server until session timeout is reached.
when we make new request it will check auth cookie and if not found send user to login page.
Hussshh.. he was not satisfied. Do you have better answer.