Keep track of valid user sessions
|Assignee:||Jean-Philippe Lang||% Done:|
|Category:||Accounts / authentication|
When a user clicks on the logout button in the application, the users session ID is only deleted in the browser. However, the session actually stays open as the session is not terminated at serverside.
Redmine should keep track of valid sessions and terminate the session when the user logs out.