spring-security/docs/modules/ROOT/pages/features/integrations/jackson.adoc

[[jackson]]
= Jackson Support

Spring Security provides Jackson support for persisting Spring Security related classes.
This can improve the performance of serializing Spring Security related classes when working with distributed sessions (i.e. session replication, Spring Session, etc).

To use it, register the `SecurityJackson2Modules.getModules(ClassLoader)` with `ObjectMapper` (https://github.com/FasterXML/jackson-databind[jackson-databind]):

====
.Java
[source,java,role="primary"]
----
ObjectMapper mapper = new ObjectMapper();
ClassLoader loader = getClass().getClassLoader();
List<Module> modules = SecurityJackson2Modules.getModules(loader);
mapper.registerModules(modules);

// ... use ObjectMapper as normally ...
SecurityContext context = new SecurityContextImpl();
// ...
String json = mapper.writeValueAsString(context);
----

.Kotlin
[source,kotlin,role="secondary"]
----
val mapper = ObjectMapper()
val loader = javaClass.classLoader
val modules: MutableList<Module> = SecurityJackson2Modules.getModules(loader)
mapper.registerModules(modules)

// ... use ObjectMapper as normally ...
val context: SecurityContext = SecurityContextImpl()
// ...
val json: String = mapper.writeValueAsString(context)
----
====

[NOTE]
====
The following Spring Security modules provide Jackson support:

- spring-security-core (`CoreJackson2Module`)
- spring-security-web (`WebJackson2Module`, `WebServletJackson2Module`, `WebServerJackson2Module`)
- xref:servlet/oauth2/client/index.adoc#oauth2client[ spring-security-oauth2-client] (`OAuth2ClientJackson2Module`)
- spring-security-cas (`CasJackson2Module`)
====
Adds What's New Spring Security 4.2 Fixes gh-4070 2016-09-23 14:02:27 -04:00			`[[jackson]]`
Remove include servlet/saml2/index.adoc 2021-07-30 14:52:15 -04:00			`= Jackson Support`
Adds What's New Spring Security 4.2 Fixes gh-4070 2016-09-23 14:02:27 -04:00
Document Jackson serialization support for OAuth 2.0 Client Fixes gh-8075 2020-03-18 13:59:40 -04:00			`Spring Security provides Jackson support for persisting Spring Security related classes.`
Adds What's New Spring Security 4.2 Fixes gh-4070 2016-09-23 14:02:27 -04:00			`This can improve the performance of serializing Spring Security related classes when working with distributed sessions (i.e. session replication, Spring Session, etc).`

Document Jackson serialization support for OAuth 2.0 Client Fixes gh-8075 2020-03-18 13:59:40 -04:00			To use it, register the `SecurityJackson2Modules.getModules(ClassLoader)` with `ObjectMapper` (https://github.com/FasterXML/jackson-databind[jackson-databind]):
Adds What's New Spring Security 4.2 Fixes gh-4070 2016-09-23 14:02:27 -04:00
Add remaining servlet Kotlin examples Issue gh-8172 2021-06-16 04:31:29 -04:00			`====`
			`.Java`
			`[source,java,role="primary"]`
Adds What's New Spring Security 4.2 Fixes gh-4070 2016-09-23 14:02:27 -04:00			`----`
			`ObjectMapper mapper = new ObjectMapper();`
			`ClassLoader loader = getClass().getClassLoader();`
SecurityJacksonModules->SecurityJackson2Modules Fixes gh-4121 2016-11-09 17:40:24 -05:00			`List<Module> modules = SecurityJackson2Modules.getModules(loader);`
Adds What's New Spring Security 4.2 Fixes gh-4070 2016-09-23 14:02:27 -04:00			`mapper.registerModules(modules);`

			`// ... use ObjectMapper as normally ...`
			`SecurityContext context = new SecurityContextImpl();`
			`// ...`
			`String json = mapper.writeValueAsString(context);`
			`----`
Document Jackson serialization support for OAuth 2.0 Client Fixes gh-8075 2020-03-18 13:59:40 -04:00
Add remaining servlet Kotlin examples Issue gh-8172 2021-06-16 04:31:29 -04:00			`.Kotlin`
			`[source,kotlin,role="secondary"]`
			`----`
			`val mapper = ObjectMapper()`
			`val loader = javaClass.classLoader`
			`val modules: MutableList<Module> = SecurityJackson2Modules.getModules(loader)`
			`mapper.registerModules(modules)`

			`// ... use ObjectMapper as normally ...`
			`val context: SecurityContext = SecurityContextImpl()`
			`// ...`
			`val json: String = mapper.writeValueAsString(context)`
			`----`
			`====`

Document Jackson serialization support for OAuth 2.0 Client Fixes gh-8075 2020-03-18 13:59:40 -04:00			`[NOTE]`
			`====`
			`The following Spring Security modules provide Jackson support:`

			- spring-security-core (`CoreJackson2Module`)
			- spring-security-web (`WebJackson2Module`, `WebServletJackson2Module`, `WebServerJackson2Module`)
Separate OAuth 2.0 Client Servlet Docs Issue gh-10367 2021-11-04 13:31:27 -04:00			- xref:servlet/oauth2/client/index.adoc#oauth2client[ spring-security-oauth2-client] (`OAuth2ClientJackson2Module`)
Document Jackson serialization support for OAuth 2.0 Client Fixes gh-8075 2020-03-18 13:59:40 -04:00			- spring-security-cas (`CasJackson2Module`)
			`====`