OK, I've decided to a) Release (later today) an unstable version of what I've done so far so that others can look at it/play with it/fix it/ laugh at it/argue over it. :-) b) Just use basic cookie login for now and get the other parts working (eg I also have to write a UserSource). c) Think about the "secure cookie" method after I've done that (thanks for the tips Florent/Joachim), and see what feedback I've had from a) by that time. Thanks for the input, people! -Andy -- Andy Gimblett - Programmer - Frontier Internet Services Limited Tel: 029 20 820 044 Fax: 029 20 820 035 http://www.frontier.net.uk/ Statements made are at all times subject to Frontier's Terms and Conditions of Business, which are available upon request.