Passing hidden info to JavaScript

Re: Passing hidden info to JavaScript

KKramsch wrote:[color=blue]
> OK, here's the scenario: I have a CGI script that generates
> a page with frames [...] In a typical session, the user
> interacts with two of these frames extensively, and up to
> the very end of the session, this interaction is handled entirely
> client-side by a fairly elaborate JavaScript script. (This
> interaction takes place exclusively via HTML buttons, i.e. no
> forms).[/color]

I always enjoy these long explanations of how, without a word about why.
They are a great way of attracting many inapplicable, irrelevant or
inadequate responses and avoiding any really useful or informed
assistance.
[color=blue]
> The JavaScript code is printed out by the CGI script as
> part of the frameset's head element.[/color]

Does that mean it is *all* genuinely dynamically generated code, or is
it just an effort to avoid being able to take advantage of client-side
caching?
[color=blue]
> Now, this JavaScript code requires a sizeable
> chunk of dynamically-generated data from the server
> to do its work. More specifically, this data is a table/matrix
> of strings, 3 columns wide and typically about 1000 rows long.
> This table/matrix of strings is of no interest to the user,
> so I don't want it to be visible.[/color]

A javascript data structure will only be visible to the user if they go
looking for it. If you don't want them to find it if they go looking for
it then you should not be sending it to the client at all.
[color=blue]
> My question is, what is the best way for the CGI script to pass
> the data matrix to the client-side JavaScript?[/color]

(3000 bytes * the average length of string) + demarcation and
formatting; - is something that you probably don't want to be sending to
the client at all. If you are going to send it anyway (and there
probably are smarter alternatives) then Array and Object literals offer
the least overhead.

Richard.

Re: Passing hidden info to JavaScript

In <cetjb4$ndq$1$8 302bc10@news.de mon.co.uk> "Richard Cornford" <Richard@litote s.demon.co.uk> writes:
[color=blue]
>KKramsch wrote:[color=green]
>> OK, here's the scenario: I have a CGI script that generates
>> a page with frames [...] In a typical session, the user
>> interacts with two of these frames extensively, and up to
>> the very end of the session, this interaction is handled entirely
>> client-side by a fairly elaborate JavaScript script. (This
>> interaction takes place exclusively via HTML buttons, i.e. no
>> forms).[/color][/color]
[color=blue]
>I always enjoy these long explanations of how, without a word about why.
>They are a great way of attracting many inapplicable, irrelevant or
>inadequate responses and avoiding any really useful or informed
>assistance.[/color]

I included little on the why because I barely know it myself!
This is sort of legacy code that I'm working with. The JavaScript
guru in our shop left abruptly for another job, and I'm stuck with
finishing this project, even though my JavaScript experience is
pretty scant. I'm just sticking to the general architecture used
in the rest of the project (per instructions from above).
[color=blue][color=green]
>> The JavaScript code is printed out by the CGI script as
>> part of the frameset's head element.[/color][/color]
[color=blue]
>Does that mean it is *all* genuinely dynamically generated code, or is
>it just an effort to avoid being able to take advantage of client-side
>caching?[/color]

Sorry, I'm a JavaScript newbie; I don't understand exactly how
your comments follow from mine, but to answer your question, no,
not all of the code is dynamically generated. In fact, most of it
isn't. And no, there's no particular interest in forgoing client-side
caching, though I don't understand how putting the code in the
frameset's head element thwarts client-side caching. I think the
reason this JavaScript code is in the frameset is that it must know
about what's going on in several frames at once, so it seems (to
me at least) a logical choice to put it there.
[color=blue][color=green]
>> Now, this JavaScript code requires a sizeable
>> chunk of dynamically-generated data from the server
>> to do its work. More specifically, this data is a table/matrix
>> of strings, 3 columns wide and typically about 1000 rows long.
>> This table/matrix of strings is of no interest to the user,
>> so I don't want it to be visible.[/color][/color]
[color=blue]
>A javascript data structure will only be visible to the user if they go
>looking for it. If you don't want them to find it if they go looking for
>it then you should not be sending it to the client at all.[/color]

Sorry again, what I meant to write was that I don't want the data
to be part of the stuff the browser displays when one visits the
page; I don't care if the user sees it by inspecting the page's
source. Keeping the data secret is not a concern at all here.
[color=blue][color=green]
>> My question is, what is the best way for the CGI script to pass
>> the data matrix to the client-side JavaScript?[/color][/color]
[color=blue]
>(3000 bytes * the average length of string) + demarcation and
>formatting; - is something that you probably don't want to be sending to
>the client at all.[/color]

I don't know how to avoid this and still keep the interaction
mostly client-side. But I'm definitely open to ideas.
[color=blue]
>If you are going to send it anyway (and there
>probably are smarter alternatives) then Array and Object literals offer
>the least overhead.[/color]

Thanks, that's great. I hadn't even *thought* of sending the
data as part of the JavaScript code! I was still thinking in terms
of HTML elements (in case any additional proof of my lack of
JavaScript experience were required).

-Karl

--
Sent from a spam-bucket account; I check it once in a blue moon. If
you still want to e-mail me, cut out the extension from my address,
and make the obvious substitutions on what's left.

Re: Passing hidden info to JavaScript

On Thu, 5 Aug 2004 17:04:06 +0000 (UTC), KKramsch wrote:
[color=blue][color=green]
>>If you are going to send it anyway (and there
>>probably are smarter alternatives) then Array and Object literals offer
>>the least overhead.[/color]
>
> Thanks, that's great. I hadn't even *thought* of sending the
> data as part of the JavaScript code![/color]

I feel this bodes very badly..

You are being dumped in at the deep end on
a project at an advanced stage.

The code you inherited is (starting to seem)
like inherently poor code and design, yet
your management wants you to complete this
bad design when you are not well versed
with Javascript.

I think you need to convince management
to get a JS specialist in to review and
redesign (or alternately scrap and completely
rewrite) the code.

--
Andrew Thompson
http://www.PhySci.org/ Open-source software suite
http://www.PhySci.org/codes/ Web & IT Help
http://www.1point1C.org/ Science & Technology

Re: Passing hidden info to JavaScript

In <1d78xuywpkrc.1 po9icocy40z2.dl g@40tude.net> Andrew Thompson <SeeMySites@www .invalid> writes:
[color=blue]
>On Thu, 5 Aug 2004 17:04:06 +0000 (UTC), KKramsch wrote:[/color]
[color=blue][color=green][color=darkred]
>>>If you are going to send it anyway (and there
>>>probably are smarter alternatives) then Array and Object literals offer
>>>the least overhead.[/color]
>>
>> Thanks, that's great. I hadn't even *thought* of sending the
>> data as part of the JavaScript code![/color][/color]
[color=blue]
>I feel this bodes very badly..[/color]
[color=blue]
>You are being dumped in at the deep end on
>a project at an advanced stage.[/color]
[color=blue]
>The code you inherited is (starting to seem)
>like inherently poor code and design, yet
>your management wants you to complete this
>bad design when you are not well versed
>with Javascript.[/color]

This management is notorious for such myopic directives. This
one is benign in comparison to other ones I've witnessed (and/or
labored under). E.g. they are *allergic* to the mere notion of
refactoring.

You say that the code and the design appear to be "inherently
poor". Any specific comments you may have would be a great help.
I'm trying hard to do my best, and the project is 90-95% complete.
As backwards as it may sound, I think this management will be more
receptive to the idea of hiring or contracting a JS expert for the
next version of this application once the current version is out
the door.

-Karl

--
Sent from a spam-bucket account; I check it once in a blue moon. If
you still want to e-mail me, cut out the extension from my address,
and make the obvious substitutions on what's left.

Re: Passing hidden info to JavaScript

On Thu, 5 Aug 2004 20:22:29 +0000 (UTC), KKramsch wrote:[color=blue]
> In Andrew Thompson writes:[color=green]
>>On Thu, 5 Aug 2004 17:04:06 +0000 (UTC), KKramsch wrote:[/color][/color]
(R.C.)[color=blue][color=green][color=darkred]
>>>>If you are going to send it anyway (and there
>>>>probably are smarter alternatives) then Array and Object literals offer
>>>>the least overhead.
>>>
>>> Thanks, that's great. I hadn't even *thought* of sending the
>>> data as part of the JavaScript code![/color][/color][/color]
....[color=blue][color=green]
>>The code you inherited is (starting to seem)
>>like inherently poor code and design,[/color][/color]
....[color=blue]
> You say that the code and the design appear to be "inherently
> poor". Any specific comments you may have would be a great help.[/color]

I may have given the wrong impression,
but my reasoning is this.

The transfer of such large amounts of data between
server and client requires careful consideration
about both the upper limit to the transfer, and
the form in which it is delivered.

Both these factors need to be considered in the
initial design of the system, and thereafter, the
choice of technologies used to implement that design.

Is there any indicationin the existing JS (or any
supporting documents) about how the previous JS
programmer was moving the data (or planning to)?

If not, it indicates that necessary design was
never done.

The company may find that in order to 'implement'
the current (lack of) design using the current
code takes longer than to design the system properly
and start fresh. E.G. they might find they are
lumbered with a web-app that is three months
overdue and still buggy as the harried programmer
(read you) is desperately trying to work out
design, data handling and presentation within
the constraints of poorly thought out legacy
scripts written by a person who probably knew
they were leaving the company at least two months
prior to suddenly disappearing out the door.

Sorry I cannot be more specific, that would require
a lot closer inspection of the overall web-app, and
I *may* be presuming some things that turn out to
be incorrect. But I have seen many IT based projects
die when the management would not let go of an
inherently bad 'almost complete' system rather
than admit at an earlier (potentially recoverable)
stage that they made a fundamental error.

(shrugs) You are in the best position to judge,
ultimately.

--
Andrew Thompson
http://www.PhySci.org/ Open-source software suite
http://www.PhySci.org/codes/ Web & IT Help
http://www.1point1C.org/ Science & Technology

Re: Passing hidden info to JavaScript

KKramsch wrote:[color=blue]
> Richard Cornford wrote:[/color]
<snip>[color=blue][color=green]
>>I always enjoy these long explanations of how,
>>without a word about why. ...[/color][/color]
<snip>[color=blue]
> I included little on the why because I barely know it myself![/color]

Good client-side scripting (and by extension, web applications that use
client-side scripting) is quite heavily dependent upon good script
design and architecture (more than seems to be commonly appreciated).
Once the design is right the implementation follows from it fairly
simply. But you need to understand the design and not being able to
explain anything about it is not an indicator of understanding.
[color=blue]
> This is sort of legacy code that I'm working with. The
> JavaScript guru in our shop left abruptly for another job,
> and I'm stuck with finishing this project, even though my
> JavaScript experience is pretty scant. I'm just sticking
> to the general architecture used in the rest of the
> project (per instructions from above).[/color]

There is a feeling (not uncommonly held by programmers (exclusively) of
'proper' languages, and propagated to managers) that javascript is a
"toy" language that any fool can code. It is not, however, a belief held
by anyone who has become familiar with javascript beyond the completely
trivial. Unfortunately, a consequence of that belief is that people with
a minimal knowledge of javascript (and usually less of browser
scripting) get presented with tasks that are realistically beyond them,
and little choice but to struggle on with them regardless. A failure on
the part of the management to recognise the need for an application of
skills that will probably cost them more because of the extra time it
takes the unknowledgeable to produce something that meets the minimum
criteria for "works", and result in code that is objectively bad, with
additional costs following directly form that.

I appreciate that you have no real choice, and want to do the best job
you can of the task you have been assigned (which is admiral), but it
doesn't sound to me like you are ready for this project and trying to
learn on the job you will probably find that there is more to learn than
time available to learn it in.

<snip>[color=blue][color=green]
>> Does that mean it is *all* genuinely dynamically generated
>> code, or is it just an effort to avoid being able to take
>> advantage of client-side caching?[/color]
>
> Sorry, I'm a JavaScript newbie; I don't understand exactly how
> your comments follow from mine, but to answer your question, no,
> not all of the code is dynamically generated. In fact, most of it
> isn't. And no, there's no particular interest in forgoing
> client-side caching, though I don't understand how putting the
> code in the frameset's head element thwarts client-side caching.[/color]

In principle, if a page is dynamically generated with a CGI script then
it doesn't want to be cached (at least beyond a duration that relates to
the frequency at which the contents will change), and would be sending
HTTP headers that discouraged client-side caching. Thus each request for
the resource is likely to result in it being re-fetched from the server.
But everything on the page that does not change dose not necessarily
need to be going back and forth each time. There isn't that much choice
with the HTML parts but a mass of constant javascript functions could be
moved out into a separate JS file and imported by a single script
element on the page. If the headers for that file encourage caching, and
the page is in the client's cache then the browser would not tend to be
re-requesting it from the server and so the page would load quicker with
less bandwidth use and server load.
[color=blue]
> I think the reason this JavaScript code is in the frameset is
> that it must know about what's going on in several frames at
> once, so it seems (to me at least) a logical choice to put it
> there.[/color]

It is logical that the code should be included by, and execute in the
context of, the frameset page, but it doesn't have to all be included on
the HTML page for that to happen. Importing the constant functions using
an external JS allows that code to be cached independently of the
framset page and any dynamic scripted content it might have.

<snip>[color=blue][color=green][color=darkred]
>>> My question is, what is the best way for the CGI script
>>> to pass the data matrix to the client-side JavaScript?[/color][/color]
>[color=green]
>> (3000 bytes * the average length of string) + demarcation and
>> formatting; - is something that you probably don't want to be
>> sending to the client at all.[/color]
>
> I don't know how to avoid this and still keep the interaction
> mostly client-side. But I'm definitely open to ideas.[/color]

Unfortunately ideas that go beyond wild and baseless speculation can
only come form an understanding of the whys involved. I don't even know
what this large structure of strings if for, only that you assert the
necessity of its existence.
[color=blue][color=green]
>>If you are going to send it anyway (and there
>>probably are smarter alternatives) then Array and Object literals
>>offer the least overhead.[/color]
>
> Thanks, that's great. I hadn't even *thought* of sending the
> data as part of the JavaScript code! I was still thinking in
> terms of HTML elements (in case any additional proof of my lack
> of JavaScript experience were required).[/color]

You are welcome, but I tend to agree with Andrew Thompson (and also
suspect that the underlying design might be seriously flawed).

Richard.