the sessions being created are:
UserID and WA_USEREMAILVERIFIED
"sessionNames" => explode($WA_Auth_Separator,"UserID".$WA_Auth_Separator."WA_USEREMAILVERIFIED"),
if your login rule uses both of those sessions, bot will need to be saved.
you will need to add code to save the WA_USEREMAILVERIFIED session:
$WA_USEREMAILVERIFIED = $_SESSION['WA_USEREMAILVERIFIED']
and then code to reset it:
$_SESSION['WA_USEREMAILVERIFIED'] = $WA_USEREMAILVERIFIED
just like for the UserID session.