Spring boot creating new session for every request when using session header

Question

I am working on session based security using spring boot. I am using mongodb to backup my sessions and X-Auth-Token to identify the session from the request. Below is my securit