I am trying to set up an authentication system for home WiFi that is agnostic about what access point/router is being used. This authentication system will closely follow the captive portal model, but I don't believe the details of the (custom) captive portal are important.
In order to accomplish this, I'd like to host the captive portal and authentication on an inexpensive device (like a Raspberry Pi). However, after they authenticate themselves, I would like the users to be reconnected to a different access point. That is, the Raspberry Pi would only perform the authentication step, but would not act as the normal-usage access point for authenticated users. Again, optimally this would work with any access point/router which has a normal password-protected WiFi network.
Here is the desired login flow for this project:
- User connects to the WiFi-enabled Raspberry Pi
- User is directed to a captive portal site hosted on the Pi and logs in
- (Assuming authentication is successful) User is disconnected from Pi and connected to main access point
- User can now browse the web as normal
Are there any methods for accomplishing this sort of thing? I am aware of how to set up a Raspberry Pi to act as both the access point and captive portal, but not just as the captive portal.