You are overengeneering the issue.
It is also not possible really as the session is started when it is not yet clear what kind of authentication it is.
As stated before: All of that is already happening if you use the above approach, nothing on top needed.