On using PHPRunner 9.8, when user submits a form with his username and password on the login screen, the password will be sent in plain text (even with POST).
My question is what is the right way to protect the user and his password against the third party who might be eavesdropping on the communication data?
Example: encryption in Javascript and decryption with PHP
My question is what is the right way to protect the user and his password against the third party who might be eavesdropping on the communication data?
Example: encryption in Javascript and decryption with PHP