diff --git a/uffd/session/views.py b/uffd/session/views.py
index 310ceaf67fb3dabf0d3c53228bd4b9b54b44965c..9badeb3ca1d06b0b5060c79a19e32f8fd2550b16 100644
--- a/uffd/session/views.py
+++ b/uffd/session/views.py
@@ -31,6 +31,7 @@ def login():
 	if not user.is_in_group(current_app.config['ACL_SELFSERVICE_GROUP']):
 		flash('You do not have access to this service')
 		return render_template('login.html', ref=request.values.get('ref'))
+	session.clear()
 	session['user_uid'] = user.uid
 	session['logintime'] = datetime.datetime.now().timestamp()
 	session['_csrf_token'] = secrets.token_hex(128)