Only one login instance of a user

oneflydown · April 8, 2020, 12:50pm

Is there a possibility in discourse, that I can enforce only one login instance of an user, at any given point of time?

Thanks
Oneflydown

david · April 8, 2020, 12:58pm

No, that’s not configurable. There is a hard-coded limit of 60 sessions (although, we never expect anyone to get near that in normal use)

It might be possible to override this in a plugin, but I would not recommend it (the UX would be very confusing)

oneflydown · April 8, 2020, 1:27pm

Thanks @david . I will find out a way, as my students are sharing username/password to access subscription content on forum.

pfaffman · April 8, 2020, 2:26pm

You could enforce 2 factor authentication. It works make sharing passwords more trouble.

You could also track ip addresses.

Topic		Replies	Views
Only allow a certain number of devices logged into one account at a time Support	2	291	July 27, 2021
What is the email login limit Support	4	671	April 17, 2023
Override too many login requests? Support	3	491	March 28, 2022
User Unable to Login Support	6	726	March 11, 2022
Five Discourse instances - one sign on? Support	5	1023	May 1, 2022