We use the REST end point to login. Is there a gap in webservices rest vs OpenMRS interface?
If so, then we should raise it, even better fix it.
@pramidat , alternatively, you can always get details from Tomcat. Remember we use embedded tomcat, and tomcat will have APIs to see sessions. So options are
- Fix any gap in Bahmni if its in our control.
- Fix the WebServices rest if there in lies the issue
- Fix using Tomcat APIs
- Tomcat has ability to register Interfaces for AccessLog. I wrote one such interface plugins in my previous life!
- Tomcat has JMX support.
- You can even register Session Listeners (HttpSessionListener) and do fancy things.
So you have tons of choices for resolution. Choose wisely. 
My pick - 1 or 2 (obvious)