So rather than always having to enter in a username and password, I want my intranet to accept X.509 certs generated using http://phpseclib.sou....html#casignedv
Now I do not want to use Apache to handle to login (I know this is possible). Instead I want a pure PHP solution (with a tad of MySQL maybe).
So essentially, I am trying to figure out how I can get PHP to check that the certificate is a real one and not faked by someone else. How could I do this?
Would I keep the Private Key on my server and then do a decrypt or something with the public key from the Cert? I am grasping at straws here as I am not so sure what to do or how to do it?
Any help is much appreciated, also if you need any more info let me know.