Is there any notion of creating or disposing of a session, further than simply removing the user key from the current session (as is done in the default auth implementation)? I have items (other than the user) in the session that I don't want carried through logout/login sequences, and I'm wondering when and how to get rid of them.
Thanks.