i'm trying to come up with a authentication solution that will allow users from .edu domains to view all content without being prompted. for other users it needs to prompt for more information before allowing them to proceed. this is what i think i want to do:
1. check for a cookie to see if they have already authenticated. if so, skip to end
2. check the domain they are coming is .edu then skip to end
3. for all other domains, they need to enter their email address:
if their email address ends in .edu, the server will send an email to them with a link that they click.
when they click it, the server puts a cookie on their machine and never asks for their email address again
if email address doesn't end in .edu, redirect to a page where they can enter more info.
someone will manually look at the information and determine whether to send an email with a cookie link or not
i know how to do it with servlets, but i don't know if its possible in PHP. any thoughts? i know this is a lot, so whatever pieces you could help on would be great. thanks!