Customer has an 'application' that is web enabled but has no user access control or authentication. They'd like it t be accessible from the Internet via multiple IP's and Operating systems (iPhone, Android, Widows and Mac). SSH, PPTP or any other type of VPN for authentication is probably not practical.
I'm thinking that it should be possible to authenticate them in the web browser with HotSpot authentication ? So essentially no matter where they are they can hit a port on the outside interface of one of our firewalls, enter authentication information in their WebBrowser and then have access to the 'application' behind our firewall. Obviously not the best way to go but the vendor of the application has no intention of securing it in any form....
Has anyone done something like this before ?
Thanks.