INFO 2019-09-25T15:15:52,060+0200 [] wp.events.RoutingSessionListener: HTTP session is about to be destroyed. Internal session id: 0eec2e1f1bf91e3bbce64afc48534d56
INFO 2019-09-25T15:15:52,060+0200 [] wp.events.RoutingSessionListener: HTTP session is about to be destroyed. Internal session id: a3cf8e4784a846a4b2f83613d1163f0a 
INFO 2019-09-25T15:15:52,060+0200 [] wp.events.RoutingSessionListener: HTTP session is about to be destroyed. Internal session id: 31ef7d634696e5653f6c837f2b258b69  
INFO 2019-09-25T15:15:52,060+0200 [] wp.events.RoutingSessionListener: HTTP session is about to be destroyed. Internal session id: 9eb19efa571e20d2477a0cb8ea0d5580  
INFO 2019-09-25T15:15:52,060+0200 [] wp.events.RoutingSessionListener: HTTP session is about to be destroyed. Internal session id: 4c906f5e897228215d62cc3128ad27b0

• The 'RoutingSessionListener' mentioned in log snippet performs certain cleanup/shutdown actions that needs to take place when/before HTTP session is destroyed. A session may either be destroyed due to the user logging out, or due to an idle timeout. 
• Spotfire server's access logs (<Spotfire Server Install>\tomcat\logs\access.log) should show if the users are actually logging out. You can refer attached access.log file for actual user(nmomin@apacanalytics.lab) logout entry.  If this is not the case and if the number of expiring sessions is higher than expected then one need to start by looking at load balanacers or such in front of the Spotfire server, perhaps session cookies get lost or perhaps the load balancer doesn't properly maintain session affinity so that requests within the same session are routed to different servers (resulting in new sessions being created).