- When used with Catalyst::Plugin::Session, rotate the session id after a
      successful login to avoid session fixation attacks (CVE-2009-10007).