I want the page to only be accessed and redirect to login IF the logged in user's id matched the session ID. If that is not possible, I guess I want the content of the page to only be visible IF the id matches the session id. So I assume I need to do that on the page rather than a security rule,