Hi everyone,
I’m trying to configure OpenEMR so that a single user cannot be logged in from multiple devices or browsers at the same time (i.e., to prevent concurrent logins with the same username).
By default, OpenEMR allows multiple sessions using the same credentials, but for security and auditing purposes, I’d like to ensure that once a user is logged in, any additional login attempts with the same username are either:
-
Blocked (with a message like “User already logged in”), or
-
Forcefully logged out from the previous session when the new session starts.
Could anyone guide me on the best way to implement this?
- Is there a recommended configuration or plugin for this?
Any best practices or sample implementations would be greatly appreciated 
Thanks,
Riya