Client side validation running server side code

• Download AsyncCustomValidator.zip - 1.04 KB

Introduction

Form validation is one of the basics of .NET web development. ASP.NET comes with several default validators, and a CustomValidator for any other kinds of validation.

As you know the CustomValidator allows us to implement server-side and client-side validation, which will make it functional, and user-friendly at the same time. But some validation cannot be simply done on the client side, and can only be implemented on the server side. For example checking if an e-mail exists in the database during a user registration.

I decided to find a way around it, and make my validation more friendly and responsive.

Background

After some research, and a bit of Googling, I realised that there aren't many simple solutions out there. The basic idea looked like this: use a custom validator, and make it's client-side validation function run a .NET WebMethod in code behind. Sounds simple in theory, but the ones who tried to implement this faced an obstacle: running web methods from javascript is done asynchronously. Ouch...

There were several solutions/tests I found online:

• Run the async WebMethod, and cycle in a loop until you get your result. The drawback - 100% CPU usage until we get the result.

• Rewrite the XMLHttpRequest method to run synchronously. The drawback - the code is quite massive, and we're looking for a simple solution.

I have found another article, that also did the job. The author ran the validation asynchronously, and provided the OnSuccess method. When the validation result came, he refreshed the validator. The solution sounds very good, but it was still too bulky, and provided a number of things that I thought to be unnecesary. But that was a good start, so I decided to implement a similar solution, but quite more elegant and simple.

Implementation

The idea is simple. We create a custom validator, and in the client validation run the WebMethod in the code behind, providing the OnSuccess method. When the result comes in, the OnSuccess method will set the validation result in the validator's issuccess property, and refresh the validator.

Thankfully, the .NET framework has a javascript method to refresh a validator: ValidatorUpdateDisplay() that receives a validator id as a parameter. For each validator, we get 2 js methods: A client validation, and a OnSuccess method. The reason for this is that each OnSuccess method will have to update a different validator.

Finally, when everything was finished, I wrapped it up in a validator control. The control derives from CustomValidator, so it has all it's functionality, but instead of the standard client validation, it will allow running page WebMethods.

The user control has 2 new properties, compared to CustomValidator: AsyncWebMethod and AsyncWebMethodRunCondition. The first one will hold the name of the page web method, that will validate the input. The validation WebMethod is a method with a single string paremeter (the value to be validated) that returns a boolean (IsValid). It also has to be defines with a System.Web.Services.WebMethodAttribute.

For example, this is a method that was validating a user e-mail for duplicates in the database:

[WebMethod]
public static Boolean ValidateEmail(String Email)
{
    return !UserComponent.EmailExists(Email);
}

The second parameter was introduced a bit later, and is essentially optional. It cancontain a javascript boolean condition that will check if we need to validate the value. For example, when changing user details, if the user has not changed the value of the e-mail field, there is no need to make a request to the server to validate the field.

Note: Because this control uses PageMethods, a ScriptManager has to be present on the page, and it's EnablePageMethods property has to be set to true. If this is not the case, the control will throw an exception during page load.

Using the code

To demostrate the use of this control, I have created a simple page, and monitored it in firefox using Firebug. The page contains two textboxes, and two validators, as follows:

<asp:ScriptManager ID="sm" runat="server" EnablePageMethods="true" />

<asp:TextBox ID="txbValidateMe" runat="server" />
<uc:AsyncCustomValidator ID="acvValidateMe" runat="server" ControlToValidate="txbValidateMe"
    AsyncWebMethod="Validation1">Value is not capitalised</uc:AsyncCustomValidator>

<hr />

<asp:TextBox ID="txbValidateMe2" runat="server" />iAmValid will still be accepted
<uc:AsyncCustomValidator ID="acvValidateMe2" runat="server" ControlToValidate="txbValidateMe2"
    AsyncWebMethod="Validation1" AsyncWebMethodRunCondition="args.Value != 'iAmValid'">
    Value is not capitalised</uc:AsyncCustomValidator>

The first text box will always be validated using the Validation1 Page WebMethod. The second one will only be validated when it's value is different than "iAmValid".

The validation itself will check if the value entered is capitalized:

[WebMethod]
public static Boolean Validation1(String value)
{
    return (value.ToUpper()[0] == value[0]);
}

It is a very simple example, and I have only used it here to show the control :)

Demo

The advantage of this control is that the requests it makes are very lightweight, compared to AJAX callbacks, because it uses small JSON requests. When the value has to be validated, the script makes a request to the server, and the only data that is actually sent is the serialized value of the textbox:

The response from the server is also very lightweight:

In the case of the second validator, you can see that when the value is different from "iAmValid" the script does a request to the server, but in case when AsyncWebMethodRunCondition is evaluated to false, there is no request to the server whatsoever:

Alternative

After writing this article, I have been pointed to a different approach to solve the problem. With the help of jQuery, you can use the .NET custom validator to run the same page method, and return the result asynchronously. What you have to do is point your custom validator to the following JS function:

function JQueryTestJS(source, args)
{
    $.ajax({
       type: "POST",
       async: false,
       timeout: 500,
       contentType: "application/json",
       dataType: "json",
       url: "Page.aspx/JQueryTest",
       data: '{"Value":"'+args.Value+'"}',
       success: function(result){
         args.IsValid = result.d;
       }
     });
}

In this example, you'll need a page web method called JQueryTest, with a single parameter, called Value, returning a boolean.

Points of Interest

Even with a lack of knowledge in Javascript I was able to make a simple but useful control just by doing a little research, and by forcing myself forward. A big amount of trial an error approach was used ;)

This article proves once again that simple solutions are sometimes better than the complicated ones.

History

• 29/06/08, v1.0 - Initial release

You must Sign In to use this message board.

FAQ  Noise Tolerance Very HighHighMediumLowVery Low  Search Messages    Layout Expand All MessagesThread ViewNo Javascript (slow)No Javascript Preview    Per page 102550

Msgs 1 to 16 of 16 (Total in Forum: 16) (Refresh) FirstPrevNext

Subject   Author  Date  Good one!!! Ashish Basran 7:32 13 Aug '08   Hey, this is really cool thing. I would like to try both the things you mentioned. Keep sharing things like this. Great work!! - ashish Sign In·View Thread·PermaLink Submit still possible... maximefs 6:17 24 Jul '08   Excellent article ! I have one problem though: the submit button is still enabled even if validation error message is displayed. I tought that the args.IsValid=false would block the user from submiting. Is it normal? Sign In·View Thread·PermaLink Re: Submit still possible... Artiom Chilaru 7:53 24 Jul '08   Yep, That's the standard .NET Validation behaviour.. Your Submit button will be enabled, but it will not post the form until all client-side validation is successful.. Thanks ) Sign In·View Thread·PermaLink Re: Submit still possible... maximefs 8:03 24 Jul '08   But it is not the case... it still post the form. Sign In·View Thread·PermaLink Re: Submit still possible... Artiom Chilaru 12:45 24 Jul '08   Hmm.. It might be that some of your validators don't have client-side validation code, or you disabled client side validation for them (or you just don't have JS enabled in your browser) =/ Anyway, in your Submit button's OnClick event, encapsulate your code in a if (Page.IsValid) { //[...] } block, so even if a postback is made, it will just validate the form, and not run your code, unless all validators are happy ) And don't forget.. NEVER forget to add server-side validation. Client side validation is for usability, server-side for functionality and security If you have any more questions or problems, you can post some code snippets, I'll see if I can help with anything ) Cheers Sign In·View Thread·PermaLink Good article. Rajib Ahmed 19:57 1 Jul '08   Good article. Rajib Ahmed ProgTalk - Share your articles, opinion, and thoughts. Sign In·View Thread·PermaLink Re: Good article. Artiom Chilaru 21:26 1 Jul '08   Thanks ) Sign In·View Thread·PermaLink Another approach... MR_SAM_PIPER 15:28 1 Jul '08   Use the AJAX functionality of jQuery (http://www.jquery.com). Use an HTTP handler on the server that executes the server action (no need to spin up a page on the server just to validate an email address). <asp:CustomValidator .... ClientValidationFunction="ValidateMe" /> <script type="text/javascript"> function ValidateMe(sender, args) {       $.ajax({                async: false, url: 'Validate.ashx?f=email&d=' + args.Value, dataType: 'json', timeout: 500,                success: function(data) {                      args.IsValid = data.IsValid; // assuming you return JSON equivalent to { IsValid: false } for eg.                }       }); } </script> This is truly synchronous as the success method will be called once the response is received from the server, and it fits into the existing validation model without any extra work (ie postbacks are prevented if the custom validator was invalid). There are a million ways to customize this behaviour as well - you just have to dive into jQuery a little more, but it's still vastly easier to do than use the MS client libraries. I've used this approach for performing profanity filtering on text boxes and it works very well, IMHO. Sign In·View Thread·PermaLink 2.00/5 (1 vote) Re: Another approach... Artiom Chilaru 17:13 1 Jul '08   That is indeed a good solution.. I've heard and seen some jQuery code, but have never used any before.. Thanks Sign In·View Thread·PermaLink Re: Another approach... Artiom Chilaru 13:19 24 Jul '08   Hi Again, I didn't really like your method in the beginning, because the validation had to be in a separate document, not in the same page that the rest of the code was.. Your code was doing a GET request, while the page methods do a POST.. Well, after reading a couple of pages in the jQuery docs, I came up with this: function JQueryTestJS(source, args) { $.ajax({ type: "POST", async: false, timeout: 500, contentType: "application/json", dataType: "json", url: "Register.aspx/JQueryTest", data: '{"Value":"'+args.Value+'"}', success: function(result){ args.IsValid = result.d; } }); } Same as your code, it can be used with a simple CustomValidator, just point it to the function.. This function will call the JQueryTest Page method and will pass a parameter called "Value".. Simple and effective! Thanks a lot for your input! Sign In·View Thread·PermaLink Is it still Async? Mark Gendein 6:52 1 Jul '08   You mention that one of the problems is that the webmethods are called asynchronously. I don't see any magic happening to make it synchronous. So will this validator stop a postback that comes very soon after a change? Sign In·View Thread·PermaLink Re: Is it still Async? Artiom Chilaru 11:48 1 Jul '08   Mark Gendein wrote: I don't see any magic happening to make it synchronous. I never actually tried to make it synchronous.. I went for the simple solution of letting the form and the script do whatever it has to do, and show the validation result when it's available.. The magic is in it's simplicity Mark Gendein wrote: So will this validator stop a postback that comes very soon after a change? No, it won't.. And in my opinion (which I admit may not be 100% correct) doesn't have to, even if it may.. In the case of validators, I believe that you must ALWAYS provide a server validator.. Otherwise you can't always expect to have valid results.. The client-side validators are created for user-friendliness of the form, and partially to ease the load on the server, by pre-validating the form on the client side.. Coming back to this control, if the validation is timing out, or is just slow, we don't want the user clicking on the submit button, and nothing happening... just because the form waits for an async response.. Most of the cases, the field will be validated when it loses focus.. And the response can be quite fast (sometimes down to 50ms, including wait time, and a DB request).. If it becomes slow, and the user clicks the submit button.. and we still don't have validation results, the form will do a postback, and validate the data server side.. In this case, the form is user-friendly, provides fast response, and in case of any async validation problems.. it will do a postback and just.. work For example, look at such examples as GMail registration form.. When you enter a username, you don't get any visible notification that your input is being validated on the server-side.. If your network is slow, you might never know it tried it, and you'll think it was first validated when you tried to submit the form Regards, Artiom Sign In·View Thread·PermaLink 2.00/5 (1 vote) Content of call json acarum 4:21 30 Jun '08   What do you use to verify the content of json call on the web explorer? Sign In·View Thread·PermaLink Re: Content of call json Artiom Chilaru 4:24 30 Jun '08   I'm not sure I understand what you meant there, sorry.. If you mean the bottom part of my screenshots, that showed the contents of json calls, then that's the FireBug[^] extension for FireFox Regards, Artiom Sign In·View Thread·PermaLink Nice one !! Abhijit Jana 20:47 29 Jun '08   5 from me Best Regards ----------------- Abhijit Jana Check Out My Latest Article Java.NET : Integration of Java and .NET[^] "Success is Journey it's not a destination" Sign In·View Thread·PermaLink Re: Nice one !! Artiom Chilaru 21:27 1 Jul '08   Thanks a lot! Sign In·View Thread·PermaLink

Last Visit: Monday, October 13, 2008 1:09 PM     Last Update:Monday, October 13, 2008 1:09 PM