Jul 08, 2020 01:52 PM|PatriceSc|LINK
The usual approach is to have a logout button or to just let the session expire. You have attemps to detect this but AFAIK you have no 100% reliable solution so it should be at best an enhancement but not something vital to your app. Generally I prefer to
avoid this kind of hack and just embrace how the web works.
Keep in mind that browser vendors must avoid to add legitimate features that could be abused to keep the user safe and in control.
Edit: also I always design my app so that whatever is in session is reloaded as needed. This way I don't care about the browser session itself, don't have to reconfigure session settings so that it last for hours and so they are still timely cleaned up.
Might be an option maybe.