View Full Version : prevent password caching?

03-02-2008, 10:26 AM
i am making a webapp where i need to redirect the user to an FTP so they can upload files more easily than through HTTP upload. the user first needs to log into the webapp before any functionality is exposed, so the ftp redirection can pull the current user's FTP credentials from the backend DB.

the problem is that i will need to pass the ftp://user:pass@myftp.com in the url for the browser to log into the ftp server. i dont want the user to easily "save password"

are there headers i can send that would disable the "remember password" prompt?


03-02-2008, 11:17 PM
No, that kind of thing is browser-specific, and wouldn't be able to be changed by the headers. The best thing you could do if you don't want them saving it is to regenerate the password each time they login/logout. Whether or not this is possible/feasible depends on how you have it setup.

03-03-2008, 12:47 AM
maybe swfupload might work better, it seems to be the best of all the evils. php's APC is great (especially the way it's implemented with jquery -APCquery), but still way too impractical for large file counts since it relies on <input type="file"> (meaning selecting one file at a time)