see https://support.abp.io/QA/Questions/536/How-to-Restrict-users-multiple-login-session
this is possible if only you can send us the module. but in this way, everybody can install it.
you can add an property to User entity "PasswordSetDate". then override Login method to redirect the user to password change page. this sounds like a good feature for the new versions. Enforcing user change password after some time.
authorize attribute is extended from Microsoft authorize. and it's policy based authorizations. you can create custom policies for your requirement https://docs.microsoft.com/en-us/aspnet/core/security/authorizationpolicies?view=aspnetcore-5.0
maybe you can use https://docs.abp.io/en/abp/latest/Background-Jobs to process the message in the consumer method, then it'll be async
maybe the response was not succesful, can you check the log
we are also checking
ok. so there might be a problem. created a issue. you can track this https://github.com/abpframework/abp/issues/9082
closing the issue since the main defect has been resolved. you can create a new ticket for your new questiion. thank you
reopen if it doesn't work for you in the following version.