I'm looking for a way to allow only 1 session per user. Differently from the other cases, I do not want to prevent a user from logging while his session is still active. The behavior i'm looking for is "substitution", e.g.:
A user log's into a pcA and right away logs into pcB (or a another/anonymous browser for that matter). As soon as he logs onto pcB, whatever action performed on pcA is supposed to be treated as "session expired"
How can i achieve this behavior?
ps: I'm using Asp.Net MVC 5 and redis cache for session state store.