Session Management
Session Management allows administrators to monitor and control user sessions across the platform, ensuring security and compliance.
Overview
Session management provides:
- Visibility into active user sessions
- Ability to terminate sessions
- Session policy configuration
- Idle timeout controls
Access via Security Center
Session Management is available in the Security Center:
- Navigate to Security in the top bar
- Click on the Sessions tab
- View and manage active sessions
Viewing Active Sessions
Via Dashboard
The Sessions page shows:
- User name and email
- Session start time
- Last activity
- IP address
- User agent/device
- Session status
Via API
const sessions = await client.sessions.list({
status: 'active',
limit: 50
});
for (const session of sessions.data) {
console.log({
user: session.userEmail,
startedAt: session.createdAt,
lastActivity: session.lastActivityAt,
ipAddress: session.ipAddress
});
}
Terminating Sessions
Single Session
await client.sessions.terminate('session-123');
All User Sessions
await client.sessions.terminateAll('user-456');
Bulk Termination
await client.sessions.bulkTerminate({
filter: {
inactiveFor: '24h'
}
});
Session Policies
Configure session behavior:
await client.settings.update({
sessions: {
// Maximum session duration
maxDuration: 480, // 8 hours in minutes
// Idle timeout
idleTimeout: 30, // 30 minutes
// Concurrent sessions per user
maxConcurrentSessions: 5,
// Require re-authentication for sensitive actions
requireReauthFor: ['settings.update', 'user.delete']
}
});
Feature Availability
| Feature | Business | Enterprise |
|---|---|---|
| View Sessions | Yes | Yes |
| Terminate Sessions | Yes | Yes |
| Session Policies | Yes | Yes |
| Advanced Policies | - | Yes |
Next: Learn about Incidents for security incident management.