Why UserAction.validateLogin has SecurityRepository.load(user.getId(), true);
and ControllerUtils.refreshSession() does not have SecurityRepository.load(user.getId(), true);
Also, the code is almost idetical in two these places. [originally posted on jforum.net by Anonymous]