Enforcing Single Sign-On in a PHP Environment