Level 75
This was once discussed, you could perhaps as logging in get the id from database as well, then see if that id is the current auth id, if so display a friendly message....
I am guessing you mean only one device at a time.
Oct 3, 2020
6
Level 1
How to prevent users from making multiple sessions
How to prevent users from making multiple sessions, I need to make sure that the account is used on one device.
Level 27
Add a last_session to your user table.
See https://stackoverflow.com/questions/19510220/single-session-login-in-laravel
Level 75
Also don't forget to read https://laravel.com/docs/8.x/authentication#invalidating-sessions-on-other-devices
Level 1
I did this, but what if the user closed the window and didn't logout? in this case the session will still active waiting to be logout out or timeouted.
Level 122
If you invalidate other sessions during login then sessions on other devices are closed and only the current session is active.
If the user logs in on their phone, then logs in on their pc then the phone session is immediately terminated.
Level 27
Use Auth::logoutOtherDevices($password);
See https://laravel.com/docs/8.x/authentication#invalidating-sessions-on-other-devices
Please or to participate in this conversation.