I am working on an intranet and have a web app that I need to use
authentication for signing a document.
As an organization we have decided that a username and date/time stamp
would be sufficient to be considered a signature.
On some pages data is submitted and I'm just concerned about capturing
the username. On other pages I'm very concerned that the person
submitting data is really the person who is logged into the machine
(2003 server Active Directory). When they submit data on these pages I
would like to reprompt for password. To get to these pages it would be
nice if I could not prompt for the password and use NTSF permissions to
allow them access without prompting for password.
Any ideas on how to do this would be GREATLY appreciated.
Thanks,
Greg