the session user is not sent back to the client in the
response header - and since that's the only information that
js can possibly have access to - that's it!
The only other way would be to ask it for it using a external file ... OR just get a server side langauge to put
it in in the first place...
but personally i'd never use perl - i'd use mason in a js file: