Closures to problem has changed a bit, but  the rescue! Create solution is still familiar: closures! We can create  a function that is available globally in the success handler of the xhr request which willwrap the value of the data  returnedby  the server decrypted authentication information  in a read-only manner. The global scope of the closure makes the unencrypted authentication data readable by anyone who requires it