Be part of JetBrains PHPverse 2026 on June 9 – a free online event bringing PHP devs worldwide together.
I would like to make some kind of protection for sensitive user data, in cases when user logs out on one page, but leaves other pages opened unintentionally. Pages that should be only visible to logged in users, should contain mechanism for automatic redirection to login form if user isn't logged in anymore. The best example of what i want to achieve is similar thing on facebook.com.
My question is what is best way to do that using vue?
How to notify all other vue instances that session is no longer valid?
If you only want one session per user then use logoutOtherDevices
https://laravel.com/docs/5.7/authentication#invalidating-sessions-on-other-devices
When your user logs in you can do the following as you will have the password user entered in the request to
Auth::logoutOtherDevices($password);
This will cause all of the other vue sessions to no longer be valid on the server side and cause the user to have to login again in the frontend
Okay, but what if I want to invalidate session on only one device? It is no problem to invalidate session on server. It will happen as soon as the user send request to logout route. My question is, how my Vue instance in any other already loaded page should be notified about session invalidation on server, and what should that instance do then? One page (one browser tab) contains one independent vue instance, or I'm wrong? Almost any social network have this protective functionality. It's possible to open infinite amount of tabs but when user clicks logout on one of them then all other tabs become disabled, or be redirected to login form.
If you want to invalidate a session you could use
It has a destroy method that does what you ask on that browser.
Remember that your browser sessions on different host/browsers are not linked so you can’t force the other broswer sessions to also logout without your backend.
Please or to participate in this conversation.