asp.net core 2.1 Prevent multi user with same account id login at the...
Re: asp.net core 2.1 Prevent multi user with same account id login at...
View Complete Thread
Re: asp.net core 2.1 Prevent multi user with same account id login at the same time
Jul 21, 2019 05:24 PM
Instead of a bit, it’s more common to use a token and a time stamp. At login a token is assigned. Every request you validate the token and and update the time stamp. If the token doesn’t match, send to login page.
At login if the the time stamp is old enough you allow login ( this will invalidate any previous login token). If not old give message that say logout old session, or wait the timeout and try again. You may add the feature to allow force logout.