The docs for deleting a password email user (https://supertokens.com/docs/emailpassword/common-customizations/delete-user) say that the user token is not invalidated, would it be sufficient to call sessionContainer.RevokeSession() like in the change-password example?