When the credentials of a user have changed (e.g. because he changed his password in the CMS), the credentials on the current HTTP session are not reset. As a consequence, the user is no longer able to use the HTTP session until it times out.
Steps to reproduce:
1. login to the CMS
2. change your password using the shortcut on the Dashboard
3. open the channel manager and edit a channel
Expected: the SSO handshake is done again
Actual: the channel cannot be edited anymore.