WebDev authentication and session control

Hello, I’ve setup the webdev module with some python resources using https and auth. How does one access the active webdev sessions, where I’m assuming you can kill them if desired. It seems like once I authenticate once in a browser session it persists forever unless I delete cookies. I’d like to be able to time-out sessions on the server side after shorter periods of inactivity.

FYI this stuff is all new to me, so I might be missing some basics that are obvious to other WebDev developers.