I understand that. So it's a security feature, is it? In that case you
should come up with a holistic plan of security, and integrate this
feature into it. And any client-side security measure must be augmented
with a server-side component, because you cannot trust the client.