Welcome to the Question2Answer Q&A. There's also a demo if you just want to try it out.
+1 vote
574 views
in Q2A Core by

Recently I had some serious issues with security. I felt few features might have improved situation.

In Admin panel,

  1. A Button "Logout All users" - which will magically sign-out all logged-in users
  2. Select session cookie name - This can be changed to bypass already logged-in users with 'Remember' option.
  3. Reset password for range of users with random-complex string & send mail to user

I am not sure how many of these are feasible, but good to have in 1.8

1 Answer

+2 votes
by
selected by
 
Best answer
I'm not sure it makes sense for those to be core features as they are not applicable to many users. They could be implemented as plugins though.

For example, to log out all users you would need to reset the sessioncode for each user in qa_users.
by
And then remove the already existing sessions (in that order). Otherwise, already logged in users will stay logged in.
...