Tag login sessions with a namespace scope
On successful login, sessions should be tagged with an appropriate scope. This will allow us to determine which session belongs to which namespace hierarchy.
Instance wide sessions will be unscoped.
Groups with SSO enabled will have :namespace_XYZ
where XYZ is the group ID.
Edited by Alex Pooley