Can Multiple Users Share the Same Session ID

konrad.sopala · June 23, 2023, 12:28pm

Last Updated: Sep 24, 2024

Overview

This article clarifies whether multiple users can share the same session ID, respectively, to have multiple users in one session.

Applies To

Session ID
Shared Session ID

Solution

The short answer is yes.

The session_id is not bundled to the user.
After an active session is established, if another user login in the context of the session (e.g. sending the session to Auth0), the session will be updated to the new user.

This can be achieved by the following methods:

If Seamless SSO is enabled, pass the prompt=login to the /authorize reqeust. This will enforce the login page to be displayed, and the user could login via a different account.
If Seamless SSO is disabled, the login page is always displayed, no matter whether there is an active session or not. So the user can login via a different account.

Topic		Replies	Views
Multiple Applications leveraging the same Authentication Session Help	4	3528	December 11, 2023
Disable an Auth0 application to use user sessions of other Auth0 applications under the same tenant Help sso , application	6	981	December 18, 2023
Share the session between two mobile apps Help sessions , authentication-sessions	2	26	October 24, 2024
User ID Switching During the Same Session Help	3	1715	June 16, 2022
How can I avoid Session sharing between 2 SPA (Single Page Application) in the same tenant? Help sessions , authentication-sessions	4	1012	October 11, 2023

Can Multiple Users Share the Same Session ID

Overview

Applies To

Solution

Related topics