Sid-keyed store for the authenticated user session. Post-create immutable
at v0.5.0 (claims update deferred post-publish). Per A4 §5.1.
Cascade semantics: delete(sid) is the global session-invalidation
primitive. Sibling reverse-index stores hold orphan entries naturally
cleaned up via TTL synced to session.expiresAt at write time; the
orchestrator (route handler) calls UserSessionStore.delete LAST so any
failure in upstream sibling cleanup leaves the session valid for retry.
See A4 §6 cascade orchestration.
Sid-keyed store for the authenticated user session. Post-create immutable at v0.5.0 (claims update deferred post-publish). Per A4 §5.1.
Cascade semantics:
delete(sid)is the global session-invalidation primitive. Sibling reverse-index stores hold orphan entries naturally cleaned up via TTL synced tosession.expiresAtat write time; the orchestrator (route handler) callsUserSessionStore.deleteLAST so any failure in upstream sibling cleanup leaves the session valid for retry. See A4 §6 cascade orchestration.