the session must have been set.
if the key is set to use the session, it will allow the email address that belongs to that session to be used. This is so you can update your registration with the same email address, but another user will not be able to create a registration with the same email address.
using 0 for the key value by passes the check to see if the email address belongs to the logged in user.