id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
21649	Add session signing based on the value of the user's password	Tim Graham	Tim Graham	Add another value `('_auth_user_hash', '<some hash stuff>')` based on the HMAC of the user's password hash to session verification. This will have the benefit of allowing a user to log out their other sessions by changing the password. Of course, it should not log out the current session.	New feature	closed	contrib.auth	dev	Normal	fixed			Ready for checkin	1	0	0	0	0	0