Hi @mmdanish,
You can force users to reauthenticate when the token/session expires by configuring your Login Session Management settings for the Inactivity timeout and Require log in after settings.
Additionally, you may need to clear the user’s session by logging them out on the Application Session.. See our Why Users Remain Login After the Inactivity Timeout FAQ for more details.
Please let me know if you have any questions about this.
Thanks,
Rueben