I think there is an issue on how Phalcon handles session.
There is a point where session won't work and dumping $this->session returns the following;
object(Phalcon\Session\Adapter\Files)[47] > protected '_uniqueId' => null > protected '_started' => boolean true > protected '_options' => null.
dumping $_session returns out put related to CSRF token (security).
I can overcome this issue by removing all cookies from the browser.
My question is, what is the real cause to this session experience?