diff --git a/Service/UsernamePasswordFormAuthenticationGuard.php b/Service/UsernamePasswordFormAuthenticationGuard.php
index e2ee6a5..b78d7f1 100644
--- a/Service/UsernamePasswordFormAuthenticationGuard.php
+++ b/Service/UsernamePasswordFormAuthenticationGuard.php
@@ -122,15 +122,6 @@ protected function attemptAuthentication(Request $request)
                     //authenticated! No need to hide timing
                     $this->governor->registerAuthenticationSuccess();
 
-                    //when the user goes to the login page without logging out or on reauthentication because of
-                    //an InsufficientAuthenticationException there may still be a UsernamePasswordToken
-                    $oldToken = $this->myTokenStorage->getToken();
-                    $oldUserName = $oldToken instanceof UsernamePasswordToken ? $oldToken->getUserName() : '';
-                    if ($newToken instanceof UsernamePasswordToken && trim($newToken->getUserName()) != trim($oldUserName)) {
-                        //user has changed without logout, clear session so that the data of the old user can not leak to the new user
-                        $request->getSession()->clear();
-                    }
-
                     return $newToken;
                } catch (AuthenticationException $e) {
                     if ($this->isClientResponsibleFor($e)) {