+ // we have a situation where the app is behind a http access and is also login
+ // need to work out a way to handle that.
+
+ $session_started = false;
+ if (php_sapi_name() != "cli" && empty($_SERVER['PHP_AUTH_USER']) && empty($_COOKIE['PHPSESSID'])) {
+ $session_started = false;