Hi Robert
I wouldn't be using sessions anyway. Go have a look at JWT :-)
Hi Robert
Have you had a look at jwt? The session validation for that is she cryptographically using bcrypt. Therefore there should be no need to store anything anywhere server side. Thus eliminating your problem.
Regards
Robert