In my web app after a user logs in a new session is created

Question

0

Asked: May 25, 20262026-05-25T11:03:28+00:00 2026-05-25T11:03:28+00:00

In my web app after a user logs in a new session is created

0

In my web app after a user logs in a new session is created so until he closes the browser he stays logged in. The problem appears when admin wants to ban the user who’s browser is still open. Even though the user is banned and cannot log in anymore, he still stays logged in until he closes the browser or manually logs out. This definitely should be fixed.

Is it possible to add a verifying method to every action of every controller? Of course I mean a smart way – not copy/paste 100 times.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-25T11:03:29+00:00

Editorial Team

2026-05-25T11:03:29+00:00Added an answer on May 25, 2026 at 11:03 am

add the following to your application controller:

before_filter :sign_out_banned_user

def sign_out_banned_user
  if current_user.banned?
    session[:current_user_id] = nil
    redirect_to root_path, :notice => "You are banned"
    return false
  end
end

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

In my web app after a user logs in a new session is created

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply