> > The possibility to block a session while it's logged in would probably > never implemented in the core because of the severe performance hits > associated to check for every request if the user is allowed to log in. >
Maybe upon login (or session renew of a logged in user), store the current session ID in the db.auth_user table. Then if you want to log out a given user, just get the session ID from db.auth_user and delete the session file. Anthony -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
