Using Ajax to Validate Forms

18Dec

Background

Forms are such a common element on the Internet we tend to blunder through them without too much thought. However, if the web site has added a few nice touches that make the process easier, it tends to speed up the process and reduce any frustration in finding our preferred username (i.e. try getting your name under Hotmail!).

There's two types of validation:

  1. Simple, server-independent validation, i.e. checking email address are the right format, password and confirm password matches, etc.
  2. Server-based validation, with can be delivered with a page refresh, or live (as this tutorial will explain), i.e. for checking whether a username is taken.

What can we do?

  • Live username checking
  • Password confirmation and strength
  • Checking if an email address is already registered
  • URL validation, i.e. Basecamp's site address checks if the URL is available (pretty much the same as username validation)

So why do it?

  • It makes the user's experience quicker, or arguably better
  • It's not much extra work to put in place (explained below)

Examples in the wild

Howto

As with all these tutorials, I expect that you have built your solution to the point where it works, but now we want to add our splash of JavaScript magic.

In our baseline example, my requirements are:

  • Username validation kept in separate function
  • Server side does the it's normal job
  • I can detect an Ajax request and return something different

Username validation

Our PHP function to validate the username reads:

function check_username($username) {
  $username = trim($username); // strip any white space
  $response = array(); // our response
  
  // if the username is blank
  if (!$username) {
    $response = array(
      'ok' => false, 
      'msg' => "Please specify a username");
      
  // if the username does not match a-z or '.', '-', '_' then it's not valid
  } else if (!preg_match('/^[a-z0-9\.\-_]+$/', $username)) {
    $response = array(
      'ok' => false, 
      'msg' => "Your username can only contain alphanumerics and period, dash and underscore (.-_)");
      
  // this would live in an external library just to check if the username is taken
  } else if (username_taken($username)) {
    $response = array(
      'ok' => false, 
      'msg' => "The selected username is not available");
      
  // it's all good
  } else {
    $response = array(
      'ok' => true, 
      'msg' => "This username is free");
  }

  return $response;        
}

This format for a response is good, because we are using it to display error messages on the page, but we can also convert it to JSON and use it in our Ajax response later on.

Markup

Again, it's assumed your markup is already designed to show error messages.

For this example the following markup is being used within a fieldset:

<div>
    <label for="username">Username, valid: a-z.-_</label>
    <input type="text" name="username" value="<?=@$_REQUEST['username']?>" id="username" />
    <span id="validateUsername"><?php if ($error) { echo $error['msg']; } ?></span>
</div>

jQuery

Our client side check will perform the following:

  1. Only if the value has changed run the check, i.e. ignore meta keys
  2. Use a nice ajax spinner to indicate activity
  3. Make an Ajax request and show the response
$(document).ready(function () {
  var validateUsername = $('#validateUsername');
  $('#username').keyup(function () {
    var t = this; 
    if (this.value != this.lastValue) {
      if (this.timer) clearTimeout(this.timer);
      validateUsername.removeClass('error').html('<img src="images/ajax-loader.gif" height="16" width="16" /> checking availability...');
      
      this.timer = setTimeout(function () {
        $.ajax({
          url: 'ajax-validation.php',
          data: 'action=check_username&username=' + t.value,
          dataType: 'json',
          type: 'post',
          success: function (j) {
            validateUsername.html(j.msg);
          }
        });
      }, 200);
      
      this.lastValue = this.value;
    }
  });
});

The code breaks down as follows:

$(document).ready(function () {

Run the JavaScript in this (anonymous) function when the document has loaded.

var validateUsername = $('#validateUsername');

Create a cached copy of the validateUsername span because it will help a little with optimisation (it's a good practise to have).

$('#username').keyup(function () {

Run the JavaScript in this (anonymous) function on key up.

var t = this;

Cache the 'this' instance as we need access to it within a setTimeout, where 'this' is set to 'window', which can cause all manners of confusion.

if (this.value != this.lastValue) {

Only run the check if the username has actually changed - also means we skip meta keys.

if (this.timer) clearTimeout(this.timer);

The timeout logic means the ajax doesn't fire with every key press, i.e. if the user holds down a particular key, it will only fire when the release the key.

validateUsername.removeClass('error').html('<img src="images/ajax-loader.gif" height="16" width="16" /> checking availability...');

Show our holding text in the validation message space.

this.timer = setTimeout(function () {

Fire an ajax request in 1/5 of a second.

$.ajax({
  url: 'ajax-validation.php',
  data: 'action=check_username&username=' + t.value,
  dataType: 'json',
  type: 'post',
  success: function (j) {
    validateUsername.html(j.msg);
  }
});

The actual Ajax request. If the script ajax-validation.php returns any response, convert it to JSON and put the 'msg' field in to the validation message.

The fields are set in the PHP server response. You can see this working in the demo, and view the source, in particular look at the $resp array from check_username.

this.lastValue = this.value;

Finally, put the current value in to a cache, to make sure we ignore meta keys (from above).

Server response

Now all I have to add to the PHP code, that already handles normal username validation is:

if (@$_REQUEST['action'] == 'check_username' && isset($_SERVER['HTTP_X_REQUESTED_WITH'])) {
    echo json_encode(check_username($_REQUEST['username']));
    exit; // only print out the json version of the response
}

So long as this is high enough in the logic, it will just check the username is valid, using our existing function and convert the response to a JSON object (you may need to add JSON support for PHP, otherwise it's bundled with PHP 5.2.0).

Example & taking it further

In the example I've provided, I've also shown how we can add JavaScript to a normally coded page to also validate the user providing an avatar URL.

Filed in: Tutorials

Tags: , ,

It's all about CSS Slide out and drawer effect

3 Trackbacks/Pingbacks

  1. Pingback: 2007 Moments on December 31, 2007
  2. Pingback: log.itto.be » Blog Archive » links for 2008-03-18 on March 18, 2008
  3. Pingback: 51+最佳jQuery教程和示例 | 帕兰映像 on April 25, 2008

17 Comments

  1. Andreas
    January 3, 2008 at 14:47

    This is perfik, I've been thinking about how to solve a couple of issues with my "live search" on my site, but your use of setTimeout and checking the last value are so simple and logical. Exactly what I needed. Cheers.

  2. Chris Mahon
    January 4, 2008 at 11:28

    Hi Remy,

    Great article. I just wondered what the $_REQUEST variable was used for in PHP? Is this like $_GET and $_POST all in one and if so, is it not better to check only for the type of request you are expecting? I.E. not allowing people to pass variables through the URL?

  3. Remy
    January 4, 2008 at 12:25

    @Chris - absolutely correct. If you wanted to restrict which method you read from, you could specify $_POST or otherwise. Remember that it's easy for someone to tweak the posting method if they really wanted to though.

  4. JL
    February 2, 2008 at 22:33

    Great, but how can i check a mysql database and create a $taken_usernames array? ps: i am a beginner.

  5. James
    March 15, 2008 at 16:11

    Remy, excellent article! This has helped me a great deal when learning jQuery AJAX. I do have one small suggestion to make; When entering a username, it's better practice to restrict the length of the uname then fire off a Ajax call thus minimizing php/db processing. E.g. if (this.val().length <= 5) { return false }. Other than that, great job!

  6. Chris
    March 21, 2008 at 15:28

    Remy,

    Got a quick question for you regarding validation on forms. Basically I want to change the value and disable a submit button once clicked on to ensure the user knows something is happening (my server is a bit slow!!) but using the following code, it changes the submit button's value/disables it but the form doesn't submit...

    $("input[@type='submit']").submitcheck();

// Check submit
jQuery.fn.submitcheck = function() {
    return this.each(function(){

        var t = $(this); // get jQuery version of 'this'
        
        $(this).mouseup( function() {
            $(this).attr("disabled","disabled")
            $(this).val("We're working on it...")
        })
    
    })

}
  7. Chris
    March 21, 2008 at 15:32

    May have just answered my own question - if I put this line in it submits the form and does the other stuff.

    $("form").submit();

  8. Benedikt D Valdez
    April 20, 2008 at 17:34

    I am having trouble with getting this to work on my own server..

    I got the source code from here, and opened it, but it doesn't work, only thing I get is "This username is free"

    Any ideas?

  9. raj madhukar
    May 5, 2008 at 08:53

    it is very esay to learn coading php and other

  10. Chrissie
    May 13, 2008 at 20:27

    Hi, I have copied the example and all i get is the throbber and 'checking username' and it doesnt get any further than that. any help to get it working would be appreciated. thanks!

  11. Chrissie
    May 13, 2008 at 20:41

    ok, i fixed my own problem, turned out the server was running php4, switching it to php5 made it work a treat. many thanks (would like to know btw if creating a username array from the db is the best solution, OR checking a "select * where username = 'username' etc is best. Thanks)

  12. destroy
    May 14, 2008 at 11:39

    Good, but if you write a symbol "&" and then every symbol is a OK.

  13. Richard
    June 13, 2008 at 14:33

    Fantastic tutorial. Exactly the simpicity I was looking for, and works a charm!

  14. Richard
    June 14, 2008 at 01:45

    So I'm trying to use this tutorial as a basis for checking two password fields:

    1) Are valid passwords 2) both fields match each other

    It's not too difficult, except for one problem. If a user types their password into field one incorrectly, then types it into field two correctly, the second field is right, but it will fail validation. So the user will go back to the first field and correct their password, but the second password field will still show as invalid.

    I haven't quite figured out how to fire off the password 2 validation function when the first field is modified....

    Actually, I think I might have figured it out in my head while I was just explaining it here.

    Anyway, it would be nice to see a tutorial here on AJAX password validation when there is a password field and a password confirmation field.

  15. Remy
    June 14, 2008 at 13:42

    @Richard - I assume by "AJAX" you actually mean interactive - rather than some kind of client-server communication. Certainly you don't need client-server comms just to validate against a password. A good starting point would be the jquery validation plugin. Good luck.

  16. Faith Rivenbank
    June 18, 2008 at 03:44

    Great! I love it :)

  17. nOON
    July 3, 2008 at 00:39

    Cool! How can I show the ajax loader image when the form has been submitted?

Leave a comment