← Graph

Why a limit of four login sessions?

question 2 connections

Audience member argues four devices per user is still generous — most people use one or two at a time. Andrei answers that it fits the app's specifics: users log in from desktop browser, mobile browser, iOS and a soon-to-launch React Native app (iOS + Android), the business client requested that number, and the history of login-session data suggests four is a reasonable compromise — accepting that 100% prevention of account sharing is impossible anyway, with limited revenue impact.

answer_summary
The app has multiple device surfaces (desktop, mobile web, iOS, upcoming React Native), the business client asked for four, historical data supports it, and full prevention isn't realistic — four is a pragmatic compromise.
question Why a limit of four login sessions?
about
Login Session Tracking concept
Discusses the planned cap on concurrent login sessions.
question Why a limit of four login sessions?
asked_at
Prevent account sharing talk
Q&A question at the talk.

Provenance

Created in
wroclove.rb 2024 — Prevent Account Sharing (Andrei Kaleshka) 2026-04-17 23:20