We would like to have a Roundcube webmail environment integrated into our website. Both are using $_SESSION based security. Both session based securities should be merged to one. The site's authentication is build based on this article:
[url removed, login to view]
And in our logon procedure only a number of six $_SESSION values are saved.
Not every user who enters the site needs a webmail account. The mail accounts are functional accounts. So there is a table "people", "functiontypes" , "functions"(joins tables people and functiontypes), and the table functiontypes holds besides the function types also the functional mail address, the username and the password of that functional e-mail account.
So if a user logs in and his/her function has an e-mail address attached than there should be a link "Webmail" and pushing that link should result into a unattended login to the webmail environment. This webmail environment will be loaded in the site as a sub part of the main site.
The automatically logging into Roundcube has been solved and retrieving the wanted data from my database will not be the problem.
So that leaves you with the project to merge the two session based security systems.