User sessions in Agora¶
Sessions in Agora support access control, activity monitoring, and security investigations. In the sessions section an administrator or security user can view active and completed sessions and force-logout open sessions when needed.
Session list¶
The list shows:
- session ID;
- owning user;
- session creation time;
- last update time;
- close time or indication that the session is still open.
From the list you can:
- open a session card;
- open the owning user’s card;
- force-logout an open session.
If a session is already closed, logout is not available.
Terminating an open session¶
To force-terminate an active session:
- Find the session in the list.
- Click
logout. - Wait for success confirmation.
After termination the session is no longer open and the list updates.
Further API calls with that session token are rejected.
Session card¶
The session card shows:
session_id;- associated user;
- creation time;
- last update time;
- close time or open status.
From the card you can return to the list or open the related user.
Audit events for a session¶
Each session lists related audit events so you can:
- see actions performed in that session;
- tie operations to a specific user;
- review the sequence of actions within one login.
The session page supports both live session oversight and incident investigation.
IP address collection¶
For security control Agora records IP addresses for user connections and sessions.
Uses include:
- analyzing login origin;
- investigating suspicious activity;
- correlating user actions with a network address;
- later audit and incident response.