Skip to content
/ jackson-module-jsr250 Public

Filter out the entity properties from the output of Jackson serialization according to the DenyAll, RolesAllowed annotations.

oxerr.org/jackson-module-jsr250
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sutra/jackson-module-jsr250

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

87 Commits
src
src
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pom.xml
pom.xml
 
 

Repository files navigation

About Security Entity Filtering Module

Filter out the entity properties from the output of Jackson serialization according to the DenyAll, RolesAllowed annotations.

How to use

Register the Jsr250Module to ObjectMapper:

ObjectMapper objectMapper = new ObjectMapper();
objectMapper.registerModule(new Jsr250Module());

Mark your properties with annotations @RolesAllowed, @DenyAll:

public class User {

	@RolesAllowed("ROLE_ADMIN")
	public String getUsername() {
		return username;
	}

	@DenyAll
	public String getPassword() {
		return password;
	}

}

and then the relevant properties would be filtered out from the serialized JSON, check Jsr250ModuleTest for details.

Note: the roles is read from SecurityContextHolder.getContext().getAuthentication().getAuthorities() of spring-security.

About

Filter out the entity properties from the output of Jackson serialization according to the DenyAll, RolesAllowed annotations.

oxerr.org/jackson-module-jsr250

Topics

jackson jsr250

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

0.0.5 Latest
Sep 2, 2022
+ 4 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages