Is there a logout API call?
I am using the d2lvalence SDK for Python. The first time a user accesses the login page via the create_url_for_authentication call, they login to D2L. However, the next time they access this page, they are not required to login, as their session is saved. When. you go to D2L and logout, then re-access this page, then you must login. Is there a way to logout the user or delete this session to require them to login each time? Otherwise this seems like a possible security issue for those who access my system using a shared computer.
Answers
-
Hi ,
I hope this document might be helpful. It has a list of calls for various LE tools and components.
https://docs.valence.desire2learn.com/reference.html
Thanks
Sree
-
Hi Sree,
I have looked through the documentation, but still do not see a call to invalidate a user key/token pair to require a new login.
Alec
-
Does terminating their session not force a new log in?
https://docs.valence.desire2learn.com/res/user.html#sessions
-
Thanks, Jason! This is exactly what I was looking for.
-
Hi, Following up on this conversation. Only an admin user has the permission to delete/terminate user session. When a regular user (learner role) uses the API to login and perform actions, the user doesn't have permissions to delete/terminate their own user session. Any advice on how the logout would work on this case?
