Converting old non-coldbox app to coldbox. I had Luis's old security interceptor and just converted to cbsecurity. Everything working great. I just had a question on the "You can also specify a sessionStorage and a requestStorage WireBox mapping" in the docs.
Will cbsecurity copy my User properties into sessionStorage or do I need to do that in retrieveUserBy.. functions? My old app added session vars after login and most of those are now duplicated by User.cfc.
I assume requestStorage only lasts for that page? So if I go to a new handler it will have to do the RetrieveUserById() again?