Project

General

Profile

Actions
Copy link

Epic #40

open

Failure to Invalidate Session After Password Change

Added by rashmita rout about 2 months ago. Updated about 1 month ago.

Status:
New
Priority:
Medium
Assignee:
-
Target version:
-
Start date:
01/05/2026
Due date:
% Done:

0%

Estimated time:
(Total: 0:00 h)
Work Type:
Platform
Technical Area:
Release Narrative:

Description

Objective:

Ensure that all active sessions associated with a user account are invalidated immediately after a password change to prevent unauthorized access using old credentials.

Covers:

1. Session lifecycle management

2. Token invalidation

3. User-controlled session handling

4. Protection against session hijacking after password updates

Subtasks 1 (1 open0 closed)

Story #41: Invalidate All Active Sessions After Password ChangeNewTingg BE01/05/2026

Actions
Actions
Copy link
 #1

Updated by rashmita rout about 2 months ago

  • Subtask #41 added
Actions
Copy link
 #2

Updated by rashmita rout about 2 months ago

  • Subtask #42 added
Actions
Copy link
 #3

Updated by rashmita rout about 1 month ago

  • Subtask deleted (#42)
Actions
Copy link

Also available in: Atom PDF