The encode tag checks to see that the user has a session and the
session id did not come in via a cookie, if these are both true
the body of the tag is searched for relative URL references and they
are replaced with versions that contain the session id. In addition,
forms are modified with an addition hidden form parameter that is the
session id. Here is an exhaustive list of those html tags that are
modified:
<a href="xxx"> -> <a href="xxx?_LINKSTRING_">
<img src="xxx" lowsrc="yyy"> -> <img src="xxx?_LINKSTRING_" lowsrc="yyy?_LINKSTRING_">
<form action="blah"></form> -> <form action="blah">_FORMSTRING_</form>
<frame src="xxx"> -> <frame src="xxx?_LINKSTRING_">
<object src="xxx"> -> <object src="xxx?_LINKSTRING_">
Copyright 1996, 2013, Oracle and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.
Oracle Fusion Middleware Java API Reference for Oracle WebLogic Server 12c (12.1.2)