If a user has an open session, and then it is disabled in the administration, presently that user can still access logged in content.
We should add a check in the GMF authentication which verify if the logged in user is active or inactive in the administration. If inactive, his session should be invalidated.
If a user has an open session, and then it is disabled in the administration, presently that user can still access logged in content.
We should add a check in the GMF authentication which verify if the logged in user is active or inactive in the administration. If inactive, his session should be invalidated.