Sessions
Monitor and manage active authentication sessions.
View and control active sessions across your better-auth instance.
Sessions List
The sessions table displays all active sessions:
| Column | Description |
|---|---|
| User | User's name and email |
| Token | Session token (truncated) |
| IP Address | Client IP address |
| User Agent | Browser/device info |
| Created | Session start time |
| Expires | Session expiry time |
Filtering
- Search: Filter by user name or email
- Active only: Show only non-expired sessions
- User filter: Filter sessions by specific user
Session Details
Click a session row to view full details:
- Complete session token
- User information
- Full user agent string
- Geographic location (if available)
- Session timestamps
Actions
Revoke Session
End a specific session immediately. The user will need to sign in again.
Revoke All User Sessions
From the user profile, revoke all sessions for a specific user. Useful when:
- User reports compromised account
- User leaves organization
- Security incident response
Delete Session
Permanently remove the session record from the database.
Revoking invalidates the session token. Deleting removes the database record entirely.
Session Expiry
Sessions have an expiry time set by your better-auth configuration. Expired sessions are automatically invalid but remain in the database until cleaned up.
Accessing from User Profile
You can also view and manage sessions for a specific user from their full profile:
- Navigate to Users
- Click a user row
- Click "View Full Profile"
- Select the Sessions tab
Next Steps
- Users - Manage user accounts
- Accounts - View linked providers
- Configuration - Configure session settings