Sorry if this doesn't work for you but... Why don't you send the password hash instead clear. You can use a simple javascript md5 hash and send the hash, not the password thru the wires. If you need all the info secured, this will not work, of course...