How can I inhibit the previous session handler based on the user's login id? (This would be, say, to prevent reuse of a session from a stolen password login.) Could I, for instance, add my own test to your authn-flow's TestForSession? Something like that. Thanks, Jim