### the usual...
use strict;
use warnings;
### OO wrapper for Apache::Session
use Session;

sub session {
  my ( $self, $key ) = @_;
  
  my %session_config = (
    Store      => 'MySQL',
    Lock       => 'MySQL',
    Generate   => 'MD5',
    Serialize  => 'Storable',
    Handle     => $self->{'dbh'},
    LockHandle => $self->{'dbh'}
  );
  
  my $session = new Session $key, %session_config;
  
  if ( ! $session->get("username") ) {
    $session->set('username' => "anonymous");
    $session->set('user_id'  => "00000000");
  }
  
  return $session;
}