Deleting Sessions with no logout

I think you may find there is no reliable way of achieving this, there was a significant thread on this issue a little while ago.
What is the unwanted behaviour that you are seeing? Perhaps there is a better solution.
Colin

Colin Law wrote:

I think you may find there is no reliable way of achieving this, there

was a

significant thread on this issue a little while ago.

What is the unwanted behaviour that you are seeing? Perhaps there is a

better solution.

Colin

It has to do with the sessions which are holding id for the current

users logged in. At most, there may be three session variables set - the

two above and another called session[:admin]. An admin can move from

profile to profile making modifications, but what I think is happening

is that the admin are not “logging” like they should and are instead

simply "X"ing out. This means that those sessions may be used to set up

unwanted objects and show links, and other varous forms of undesired

information.

Do you mean another user is coming along to the pc that had the admin user
logged in and using it as admin? Or that someone is picking up the
admin role on another PC when they should not? Or something else?

Colin Law wrote:

I still do not understand the problem you are seeing.
Colin