Session does need to be terminated when actively logging out

Hi all!

I am using the latest stable version of OpenDistro. For authentication, I have the basic form configured. This one works perfect, I can successfully authenticate from Kibana.

I have a problem with the log out from Kibana and the session invalidation.

My situation is the following, I access Kibana with login, I capture a request from the browser and I start repeating this request in a loop.

Then I log out from Kibana and in the browser, I actually log out but the request remains valid for the lifetime of the session.

How can I invalidate the session when I log out of Kibana?

Hi @francobep can you outline the exact steps you take. Do you use 2 separate browsers? Does the original captured communication include basic authentication?
Can you also confirm which odfe version you are using?