首页 > 代码库 > jackson JsonPropertyOrder和@JsonIgnoreProperties注解

jackson JsonPropertyOrder和@JsonIgnoreProperties注解

有些时候,我们在和外部系统交互的时候使用了json作为标准的数据交换格式,同时为了安全性考虑,增加了对报文的校验,因此我们需要确保序列化的时候参数有序且不多不少刚好,因为对外的API不像后台和前端交互一样,兼容即可,而是对严谨性的要求极高。jackson默认的机制是序列化的时候,先父类的属性,然后再是子类的属性按照定义的顺序进行(fastjson则刚好相反,先序列化子类,然后序列化父类)。为了使用json的工具类,且达到有序的目的,之前特地研究了fastjson/jackson两者的序列化特性,fastjson/jackson都有设置序列化顺序的参数,也就是jackson @JsonProperty注解的index以及fastjson @JSONField注解的ordinal。实际设置了测试下来,感觉两者都不生效或者有bug,总之行为比较怪异。之前记得jackson有个类级别的@JsonInclude注解可以设置要序列化的所有属性,于是特地测试了,符合预期的要求,不过记错了是JsonIgnoreProperties。结合继承+@JsonFormat注解,我们甚至可以完美的达到对于一个相同的属性比如状态,有些view要称为orderStatus,另外一些称为shippingStatus的目标,同时确保在service/mapper层,完全是场景无关的。jacksonJsonIgnoreProperties/JsonPropertyOrder在序列化和反序列化时仅读取当前类的注解,忽略父类的注解,这样我们就可以做到行为的100%精确控制,同时尽可能的复用了父类的定义。

 

如下:

package tf56.lf.lfoms.model.pub;

import java.io.Serializable;
import java.util.List;

import javax.validation.constraints.NotNull;

import com.fasterxml.jackson.annotation.JsonFormat;
import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
import com.fasterxml.jackson.annotation.JsonInclude;
import com.fasterxml.jackson.annotation.JsonPropertyOrder;

import lombok.Getter;
import lombok.Setter;
import tf56.lf.base.metadata.validate.ValidServices;
import tf56.lf.common.util.JacksonHelper;
import tf56.lf.lfoms.validate.group.Group;

/**

 * @author admin
 *
 */
@Getter
@Setter
@Deprecated
@JsonPropertyOrder({"fromOutPartyType","receiverMobile","sessionBean"})
@JsonIgnoreProperties({"businessPartId","omsPaymentCollectionList","requestOrderNo"})
public class TmsCreateRequestOrderIQReqDTO extends TmsCreateRequestOrderMainReqDTO implements Serializable{

    private static final long serialVersionUID = 8617922710046163090L;
    
    //费用list
    @ValidServices(services = Group.RQUERSTORDER_CREATE )
    @NotNull
    @JsonFormat
    private List<CreateOmsPaymentCollectionReq> omsPaymentCollectionList;
    
    //货物列表
    @ValidServices(services = Group.RQUERSTORDER_CREATE )
    @NotNull
    private List<CreateGoodsDOReq> goodsList;
    
    public static void main(String[] args) {
        TmsCreateRequestOrderIQReqDTO dto = new TmsCreateRequestOrderIQReqDTO();
        System.out.println(JacksonHelper.toJSON(dto));
    }
}
在TmsCreateRequestOrderMainReqDTO类上设置了:

@JsonPropertyOrder({"sessionBean","fromOutPartyType","receiverMobile"})
@JsonIgnoreProperties({"senderMobile"})

 输出如下:

{"fromOutPartyType":null,"receiverMobile":null,"sessionBean":null,"tfSign":null,"senderPartyId":null,"senderName":null,"senderMobile":null,"fromDistrict":null,"fromAddress":null,"senderOrganization":null,"toOutPartyType":null,"receiverPartyId":null,"receiverPartyName":null,"toDistrict":null,"toAddress":null,"receiverOrganization":null,"carriersPartyId":null,"carriersCompany":null,"clientNumber":null,"transportMethod":null,"deliveryMethod":null,"isNeedReceipt":null,"receiptMethod":null,"receiptNum":null,"orderSource":null,"terminal":null,"memo":null,"goodsList":null}

不过总的来说,Jackson应该提供JsonProperties注解,毕竟仅提供ignore,不提供正向的总会有些时候无法直接满足一样,就像黑白名单一样的道理。

不过这只是解决了单项的序列化问题,反序列化的时候,同样需要解决。如果暴露的接口直接通过json requestbody映射进来,就只能定义一个一一对应的接口代理类来映射了。

jackson JsonPropertyOrder和@JsonIgnoreProperties注解