I know its impossible to fully secure anything that is displayed in the browser. But as a requirement, I have to make it harder for them to do so.
1) I would like to display PDF files in the browser, but the reader can not download the file, just view it.
2) Hide the link to the actual PDF. Possible using readfile() in php to pass the pdf file from a private location.
So far I only found is pdf.js but it's still an early code and there isn't much of a tutorial to fully grasp it. Plus I don't know if it will lets you stream the pdf as I said in 2.
So my question is, are there any other solutions? or if anyone has used pdf.js how can you stream the data to it rather than direct linking it? Also, I can't user third-party API, assuming that this will be access via intranet.
I know this is a fruitless effort, but I need to make sure that everything is looked at.