Sessions, Security & Device Management
NovelHub lets you view and manage all active sessions across your devices. This gives you a clear record of where your account is signed in and helps you respond quickly if you lose a device, use a shared computer, or notice activity you do not recognize.
Viewing active sessions
Go to Settings → Sessions to see all devices where you're currently signed in. Each session shows:
- Browser — The browser used (Chrome, Safari, etc.)
- Operating system — Windows, macOS, Linux, iOS, Android
- IP address — The IP address used by that session
- Last active — When the session was last used
Your current session is marked so you can identify it. This makes it easier to compare familiar sessions against older devices, travel sessions, or sessions you may have forgotten to sign out from.
Revoking a session
If you see a session you don't recognize, or you want to sign out from a device remotely:
- Go to Settings → Sessions
- Find the session you want to end
- Click Revoke
The device is signed out immediately. They'll need to sign in again to access your account.
Security recommendations
Review sessions regularly. Check your active sessions periodically, especially after using a shared computer, changing browsers, or traveling. If you see an unfamiliar browser, operating system, or IP address, revoke that session immediately and review your other sign-in methods.
Use a strong password. If you use email/password sign-in, choose a password that is at least 12 characters with a mix of letters, numbers, and symbols. A long, unique password matters more than small variations on an old password you already use elsewhere.
Connect multiple sign-in methods. Link OAuth providers (Google, Discord, or Twitter/X) and a password when possible. This gives you a backup if one method has issues and reduces the chance of being locked out.
Sign out on shared devices. If you use NovelHub on a public or shared computer, sign out when you are done. If you forget, revoke the session later from another device as soon as possible.
Treat unexpected activity as a real warning sign. If a session appears that you do not recognize, do not wait to see if it happens again. Revoke the session, change your password if you use password login, and review connected OAuth providers.
Session expiration
Sessions do not last forever. You may be asked to sign in again when a session expires after inactivity, when you sign out manually, when a session is revoked from settings, or when browser data such as cookies is cleared.
In practice, this means a session can end even if you did not explicitly press a sign-out button on that device. If you return after a long gap and need to log in again, that usually means the previous session is no longer valid.
What sessions track
Sessions help you stay secure by showing where your account is being used. Each session record is limited to security-relevant details such as browser, operating system, IP address, last active time, and whether it is your current session.
This information is meant to help you recognize your own devices and spot access you did not expect. NovelHub does not track your location beyond the IP address associated with each session.
Session data is used solely for security purposes and is not shared with third parties.