Securing HTML form field from getting viewed by others

Question

I am trying to integrate Send Money API from Payza on my PHP website. I have received this form here.

<form method="post" action="https://api.payza.com/svc/api.svc/sendmoney">
    <input type="hidden" name="USER" value="shubhamjha1000@gmail.com" />
    <input type="hidden" name="PASSWORD" value="password" />
    <input type="hidden" name="AMOUNT" value="10.25" />
    <input type="hidden" name="CURRENCY" value="USD" />
    <input type="hidden" name="RECEIVEREMAIL" value="hostisia@gmail.com" />
    <input type="hidden" name="SENDEREMAIL" value="shubhamjha1000@gmail.com" />
    <input type="hidden" name="PURCHASETYPE" value="1" />
    <input type="hidden" name="NOTE" value="Payment for service provided" />
    <input type="hidden" name="TESTMODE" value="1" />
    <input type="submit" value="Send Money">
  </form>

Here I have to enter my username and password. No problem with the username but password is a problem. It can easily be seen by anyone by viewing page source or inspecting element in the browser. What method should I use to make it secure enough to process the transaction without allowing anyone to see the password? This might sound a silly question but please suggest some ideas.

Answer 1

I would strongly suggest to do it on the server side of things.

Submit the minimum amount of information back to your server, and then use something like CURL in PHP, if its installed on your server (see: http://php.net/manual/en/book.curl.php)to speak to the Payza.

If you look at their own documentation site, they show you an example: https://docs.payza.com/v1.0/reference#api-introduction-guide. Scroll down to section "GetPaymentToken" and you have the option to see the code in C# or PHP