Our non-SPA users generally stick us in the head of their standard page template. We store a token in sessionStorage (so it's not trackable across tabs) that is sent over when the page is reloaded in order to keep track of sessions across navigations.