Class JacksonSerializer.GadgetClassBlacklist

  • Enclosing class:
    JacksonSerializer

    public static class JacksonSerializer.GadgetClassBlacklist
    extends com.fasterxml.jackson.databind.jsontype.impl.SubTypeValidator
    Using the blacklist from Jackson databind of class names that shouldn't be allowed. Not nice to depend on implementation details of Jackson, but good to use the same list to automatically have the list updated when new classes are added in Jackson.
    • Field Summary

      • Fields inherited from class com.fasterxml.jackson.databind.jsontype.impl.SubTypeValidator

        _cfgIllegalClassNames, DEFAULT_NO_DESER_CLASS_NAMES, PREFIX_C3P0, PREFIX_SPRING
    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      boolean isAllowedClass​(java.lang.Class<?> clazz)  
      boolean isAllowedClassName​(java.lang.String className)  
      • Methods inherited from class com.fasterxml.jackson.databind.jsontype.impl.SubTypeValidator

        instance, validateSubType
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • GadgetClassBlacklist

        public GadgetClassBlacklist()
    • Method Detail

      • isAllowedClass

        public boolean isAllowedClass​(java.lang.Class<?> clazz)
      • isAllowedClassName

        public boolean isAllowedClassName​(java.lang.String className)