Announcement Announcement Module
No announcement yet.
Serialization of domain model to JSON based on user roles... Page Title Module
Move Remove Collapse
Conversation Detail Module
  • Filter
  • Time
  • Show
Clear All
new posts

  • Serialization of domain model to JSON based on user roles...


    currently i'm using JSP for presentation layer.
    JSP works great with spring security because i can wrap html table columns in <sec> tags i show only columns that logged in user has privileges to see.

    Now i'm planing to refactor presentation layer to use javascript DOJO framework and feed tables with JSON using ajax.
    My problem is how to limit JSON serialization?
    If domain object contains many properties how can i configure serializator to generate JSON witch contains only data from model properties based on current user roles?

    Can spring security be used in that way, so i could define access roles on class property level?
    If not, are you aware of some framework that has this capabilities?

    thx for help,


  • #2
    Never mind.
    I found the solution.

    thx anyway


    • #3
      Marko, could you please share your solution? Thanks in advance.


      • #4
        Because spring security works well with JSP, im going to serialize JSON using JSP.
        Then i can wrap <json : property> tags with spring security <sec> tags the same way i wrap table columns.

        <%@ taglib prefix="json" uri="" %>
          <json:property name="itemCount" value="${cart.itemCount}"/>
          <json:property name="subtotal" value="${cart.subtotal}"/>
          <json:array name="items" var="item" items="${cart.lineItems}">
              <json:property name="title" value="${item.title}"/>
                  <json:property name="description" value="${item.description}"/>
              <json:property name="imageUrl" value="${item.imageUrl"/>
              <json:property name="price" value="${item.price}"/>
              <json:property name="qty" value="${item.qty}"/>