We have a staging server with many client projects on it. Every project is installed on a subdomain and is currently protected with htaccess basic auth.
Our goal is to create a entry site (auth.domain.com) where a client will enter a unique code (numerics, symbols and letters). This site will only be available in our country. In the background that code is stored and will redirect to a specific subdomain. That subdomain should only be available, if a user entered a valid code before. The user must not reauthenticate within 72 hours. Sometimes a project has more than one subdomain. Authentication must only be necessary once. Once a user authenticated, he can only read that website (fyi).
Does anyone have tips, ideas or best practices, how Cloudflare services could support us with that?
Thank you very much for your responses!