4

I have requirements for a legacy site where I can't redesign the screens, I can't use header no-cache tags and I have to prevent the user from seeing cached screens after they logged out and pressed their back button.

I am almost to a solution ( see the code bit below )

When the page loads, I use a JQuery AJAX function to call the web app and see if the user is still logged in. If not, the user gets redirected to the login screen

<html>
<head>
 <!-- all the usual header stuff, plus links to the jQuery libaries, first script tag on page below -->

<script language = "javascript">

 $.get("/acme/confirm_authentication",function(data){
            if( data != "confirmed"){
                location.href = "logout";
            }
  }); 



</script>
</head>
<body>

blah blah blah
</body>
</html>

The big thing I don't like about this workaround is that for a split second I can the content before the JQuery function completes.

Is there a way I can keep the page from loading/rendering until the JQuery AJAX function comes to a stop?

Thanks

Update: Answer:

I modified the accepted answer below to include a "cache: false" option. In Firefox and Chrome, cached copies of the page that were reached via the back button would run the .ajax(), but would use a cached copy of the variable "data", which would give me an out of date answer.

$.ajax({
 url: "/acme/confirm_authentication",
 async:false,
 cache: false,
 success: function(data) {
     if( data != "confirmed"){
         location.href = "logout";
     }
 }

});

Improve this question
6
  • 2
    IMHO, I feel you should avoid blocking the UI at all costs. "Waiting" for something to load can really ruin a site and a person's feelings towards said site. Commented Aug 14, 2013 at 21:23
  • 2
    Out of curiosity: If a user disables Javascript, can they access the content without logging in? Commented Aug 14, 2013 at 21:23
  • 1
    You need to do this at the server instead. Commented Aug 14, 2013 at 21:24
  • 1
    Nope. We have full server side authentication. This is about them using their back button to see cached content. I can't turn caching off server side because we have legacy multi-screen forms, each screen having data, which should not be seen after logging out. Setting no cache on those screens results in the user back buttoning to a blank screen and having no screen to go forward to.....sitting dead. Commented Aug 14, 2013 at 21:25
  • Like @Jean-Philippe Bond said below, why use Async (ajax) calls then? You are better off making the call synchronously and wait for the response to determine your next action. Commented Aug 14, 2013 at 21:37

1 Answer 1

Reset to default
8

You can do it with the ajax function with the async property set to false.

  $.ajax({
     url: "/acme/confirm_authentication",
     success: function(data) {
         if( data != "confirmed"){
             location.href = "logout";
         }
     },
     async:false
  });
Improve this answer
Sign up to request clarification or add additional context in comments.

5 Comments

Why ajaxSetup? ajaxSetup is used to set default values for future Ajax requests...
ajaxSetup would affect all future ajax calls (by setting up defaults) while @Jean-Philippe's version only sets up async: false on the one call. Depending on which one you want both answers could work.
I edited your answer to include the option "cache: false". In Firefox and Chrome cached copies of the page had the variable "data" cached which was giving a leftover, wrong, answer of "confirmed". The "cache: false" option forced the browser/AJAX code to get a fresh answer. Thanks much for the answer, huge help!
This will block the UI, there is no better solution?
Another approach is also to set your main page content to "display:none" until an ajax request completes, and then set to "display:inline" (or whatever visible style), and that way you don't need the ajax to be synchronous. To end user would look the same unless you have a "loading..." indicator visible.

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.