In the html headers, the server sees the clients OS, user agent, IP address etc. Is there a way on a local LAN a server might be able to know the username of the client that sends a request? I've checked all $_SERVER variables, PHP_AUTH_USER etc require the auth box to be displayed. I'm thinking it might be possible to know which user is logged in when the request is made, possibly by using COM or even (gasp) .NET, without having to ask the user his username. Any ideas if this can be accomplished at all? Right now we have Firefox clients and Apache with PHP in an Active Directory domain with NT4 compatibility, but we can move to IE6 with IIS+PHP if that will work.
