I am using a REST V1 Session Key to authenticate to the API.
About the user making these API calls, we have a production and staging environment.
- In production we have the user APIUser, which has an admin role that has allow grant for all permissions.
- In staging we have the user api_only, which also has an admin role with allow grant for all permission.
In production, we receive confirmation that the user we are trying to sign out has been signed off all sessions, but when I go and check the community, the web session is kept alive.
In staging, we also receive confirmation that the user has been signed off all sessions and the web session is also killed.
I'm not sure why the behavior is like this, but it is consistent.