Thread:Project:Support desk/Restricted Access to all ftp links (2)/reply (6)

The code is not meant to hide anything. As OP stated, the FTP's username and password are tied to MediaWiki, and the user's credentials are the one that will be used. The code dynamically redirects based on the user logged in.

In other words, the wiki source will look like DOCUMENT NAME

And it would be redirected to ftp://mediawikiusername:mediawikipassword@ipaddress:port/folder/file.pdf. It would be up to the FTP server to allow or deny the access.

Yes, the user can see the hashed password, but it's his own password.