How to authorise a User based on AD group membership from outside the domain?

Question

I have a PHP web application which is running on a server outside of the domain and I would like to be able to lock some of the administrative functionality down to members