Security Questions

Our security team is focused on enhancing security and we have a couple of questions regarding user management:

How can we reset a user’s session? For instance, if a hacking attempt had occurred and the attacker obtained the user’s cookies, what procedure should we follow?

As you don’t have SCIM available, we presume automatic account creation and deletion aren’t possible. However, do you have a User Management API that could be used instead?