Hello,
If you are using the term "URL rewriting" from the
servlet specification, then the second URL is properly formatted for URL rewriting as it applies to session management using a
J2EE Web container.
The first URL simply sends the jsessionid as a form parameter. This strategy will not work for session management as defined by the servlet spec.
The servlet spec states that URL rewriting (for session mgt) must be done as part of the URL "extra info" (which is often delimited from the URL itself by a semi-colon ';') and not part of a GET request form parameter list (which is always delimited by a question mark '?').
Now, I will grant that the term "URL rewriting" might have other interpretations (a part from session mgt), which --I suspect-- is what Vad has pointed out.
HTH,
Bryan