In Canvas mobile apps the log in token never expires; much like Facebook's mobile app retains a password.
When an institution has their own authentication system, they don't use the internal Canvas authentication. If a user changes their password within the authentication system at the institution, the user is never logged out of the Canvas mobile apps, unless that user intentionally logs out of the Canvas app. This is a potential security risk.
In Facebook a user can choose to log out of all devices. This is especially useful if the user's password has been compromised, or a device has been stolen.
I would like to have a similar feature available to users within Canvas. This feature should also be available to admins for any user in the Canvas user database at their institution. Admins may need to log users out of the mobile apps if they have been terminated or an institution owned device has been stolen.
For example Sally has logged into the mobile Canvas app on her IPhone, IPad, and desktop/laptop browser. Sally should be able to log out of any of these connections, or all of them, from within Canvas. A possible location for this feature could exist within the user profile.
I have attached a screen shot of the feature in Facebook as reference.