I'm using Python and the Python CGI module to do some web development for a system's administrative access page.
The problem I have is that the current features allow you to reboot the system, power off the system and stop/start/restart system services. The system is very limited in what's running (no PHP, Apache, MySQL, etc), but the system does have Python.
My question is that when you click on the power off or reboot links, the system does it immediately. What I'd like the ability to do is require the user to re-enter the administrative password before the command is actually sent to the system.
The user did have to enter the 'admin' password in order to get to this page, but for added security I'd like to implement the ability to prompt again.
Does anyone have any suggestions for how could go about doing this?