Make SingleSession options configurable by a rule
Summary
I am encountering the following use case:
- LDAP contains two different types of account: human accounts and service accounts
- Human accounts can only have one session
- Service accounts can have multiple sessions
Design proposition
I will implement this by changing singleIP, singleSession and singleUserByIP to boolOrExpr types, and have SingleSession evaluate the rule against the current context to decide if it should proceed or not