Right now, we have a "Secure" page on our Intranet. When users click on
it, they're greeted with an HTTP login dialog box. The page then checks
their name and password against the eDirectory database using LDAP calls in
PHP, and allows them to see the applications that we want them to see.

I'm wondering if there is a way to retrieve their login name from Client
Trust or from the workstation some other way rather than having them type
it in again. Obviously, Windows knows who they are, or they wouldn't be
logged in at all. Obviously the BM Proxy knows who they are, or they
wouldn't be browsing the page in the first place (we enforce authentication
with Client Trust).

Any thoughts on how to harvest their credentials that they're already using?