Jackson Parse String to Map throws java.lang.IllegalArgumentException. Explicit mapping using Jackson annotations or by providing a Mixin for UUID

huangapple
go评论87阅读模式
英文:

Jackson Parse String to Map throws java.lang.IllegalArgumentException. Explicit mapping using Jackson annotations or by providing a Mixin for UUID

问题

I'm sorry, but I can't provide a translation for code or technical content without additional context or explanation. If you have specific questions or need help with understanding the content, please feel free to ask, and I'll do my best to assist you.

英文:

I am creating an authorization server using Spring Security OAuth2 authorization framework and I am trying to map the OidcIdTokenClaims (Given Below) to Map<String, Object>.

OidcIdTokenClaims Sample Data

  1. {
  2. &quot;@class&quot;:&quot;java.util.Collections$UnmodifiableMap&quot;,
  3. &quot;sub&quot;:&quot;example@mail.com&quot;,
  4. &quot;accessibility&quot;:[&quot;java.util.ArrayList&quot;,[]],
  5. &quot;org&quot;:[&quot;java.util.UUID&quot;,&quot;********-****-****-****-************&quot;],
  6. &quot;authorities&quot;:[&quot;java.util.ImmutableCollections$ListN&quot;,[&quot;SCOPE_read&quot;]],
  7. &quot;aud&quot;:[&quot;java.util.Collections$SingletonList&quot;,[&quot;********-****-****-****-************d&quot;]],
  8. &quot;user_id&quot;:[&quot;java.util.UUID&quot;,&quot;********-****-****-****-************f&quot;],
  9. &quot;azp&quot;:&quot;********-****-****-****-************&quot;,
  10. &quot;name&quot;:&quot;MyName&quot;,
  11. &quot;theme&quot;:&quot;default&quot;,
  12. &quot;exp&quot;:[&quot;java.time.Instant&quot;,1680580456.151182300],
  13. &quot;iat&quot;:[&quot;java.time.Instant&quot;,1680578656.151182300],
  14. &quot;email&quot;:&quot;example@mail.com&quot;
  15. }

Here is my Mapping Method

  1.   private Map&lt;String, Object&gt; parseMap(String data) {
  2.     try {
  3.       return this.objectMapper.readValue(data, new TypeReference&lt;Map&lt;String, Object&gt;&gt;() {
  4.       });
  5.     } catch (Exception ex) {
  6.       throw new IllegalArgumentException(ex.getMessage(), ex);
  7.     }
  8.   }

When ever I use the about sample data to parse using Jackson2 I get the below error;

  1. java.lang.IllegalArgumentException: The class with java.util.UUID and name of java.util.UUID is not in the allowlist. If you believe this class is safe to deserialize, please provide an explicit mapping using Jackson annotations or by providing a Mixin. If the serialization is only done by a trusted source, you can also enable default typing. See https://github.com/spring-projects/spring-security/issues/4370 for details
  2. at com.a.b.c.d.e.parseMap(JpaOAuth2AuthorizationService.java:228)
  3. at java.base/java.util.Optional.map(Optional.java:260)
  4. at jdk.internal.reflect.GeneratedMethodAccessor105.invoke(Unknown Source)
  5. at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
  6. at java.base/java.lang.reflect.Method.invoke(Method.java:568)
  7. at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:343)
  8. at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:196)
  9. at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
  10. at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:750)
  11. at org.springframework.transaction.interceptor.TransactionInterceptor$1.proceedWithInvocation(TransactionInterceptor.java:123)
  12. at org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:391)
  13. at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:119)
  14. at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:184)
  15. at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:750)
  16. at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:702)
  17. at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  18. at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
  19. at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
  20. at java.base/java.lang.reflect.Method.invoke(Method.java:568)
  21. at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:343)
  22. at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:196)
  23. at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
  24. at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:750)
  25. at org.springframework.transaction.interceptor.TransactionInterceptor$1.proceedWithInvocation(TransactionInterceptor.java:123)
  26. at org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:391)
  27. at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:119)
  28. at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:184)
  29. at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.proceed(CglibAopProxy.java:750)
  30. at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:702)
  31. at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  32. at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
  33. at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
  34. at java.base/java.lang.reflect.Method.invoke(Method.java:568)
  35. at org.springframework.web.method.support.InvocableHandlerMethod.doInvoke(InvocableHandlerMethod.java:207)
  36. at org.springframework.web.method.support.InvocableHandlerMethod.invokeForRequest(InvocableHandlerMethod.java:152)
  37. at org.springframework.web.servlet.mvc.method.annotation.ServletInvocableHandlerMethod.invokeAndHandle(ServletInvocableHandlerMethod.java:118)
  38. at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.invokeHandlerMethod(RequestMappingHandlerAdapter.java:884)
  39. at org.springframework.web.servlet.mvc.method.annotation.RequestMappingHandlerAdapter.handleInternal(RequestMappingHandlerAdapter.java:797)
  40. at org.springframework.web.servlet.mvc.method.AbstractHandlerMethodAdapter.handle(AbstractHandlerMethodAdapter.java:87)
  41. at org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:1081)
  42. at org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:974)
  43. at org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:1011)
  44. at org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:903)
  45. at jakarta.servlet.http.HttpServlet.service(HttpServlet.java:527)
  46. at org.springframework.web.servlet.FrameworkServlet.service(FrameworkServlet.java:885)
  47. at jakarta.servlet.http.HttpServlet.service(HttpServlet.java:614)
  48. at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:74)
  49. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:129)
  50. at org.springframework.security.web.authentication.switchuser.SwitchUserFilter.doFilter(SwitchUserFilter.java:215)
  51. at org.springframework.security.web.authentication.switchuser.SwitchUserFilter.doFilter(SwitchUserFilter.java:175)
  52. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  53. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  54. at org.springframework.web.servlet.resource.ResourceUrlEncodingFilter.doFilter(ResourceUrlEncodingFilter.java:66)
  55. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  56. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  57. at org.springframework.security.web.FilterChainProxy.lambda$doFilterInternal$3(FilterChainProxy.java:231)
  58. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:365)
  59. at org.springframework.security.web.access.intercept.AuthorizationFilter.doFilter(AuthorizationFilter.java:100)
  60. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  61. at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:126)
  62. at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:120)
  63. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  64. at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:131)
  65. at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:85)
  66. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  67. at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:100)
  68. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  69. at org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:179)
  70. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  71. at org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:63)
  72. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  73. at org.springframework.security.oauth2.server.resource.web.authentication.BearerTokenAuthenticationFilter.doFilterInternal(BearerTokenAuthenticationFilter.java:145)
  74. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  75. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  76. at org.springframework.security.web.session.ConcurrentSessionFilter.doFilter(ConcurrentSessionFilter.java:151)
  77. at org.springframework.security.web.session.ConcurrentSessionFilter.doFilter(ConcurrentSessionFilter.java:129)
  78. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  79. at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:227)
  80. at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:221)
  81. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  82. at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:107)
  83. at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:93)
  84. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  85. at org.springframework.security.web.csrf.CsrfFilter.doFilterInternal(CsrfFilter.java:117)
  86. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  87. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  88. at org.springframework.web.filter.CorsFilter.doFilterInternal(CorsFilter.java:91)
  89. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  90. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  91. at org.springframework.security.web.header.HeaderWriterFilter.doHeadersAfter(HeaderWriterFilter.java:90)
  92. at org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal(HeaderWriterFilter.java:75)
  93. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  94. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  95. at org.springframework.security.web.context.SecurityContextHolderFilter.doFilter(SecurityContextHolderFilter.java:82)
  96. at org.springframework.security.web.context.SecurityContextHolderFilter.doFilter(SecurityContextHolderFilter.java:69)
  97. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  98. at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:62)
  99. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  100. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  101. at org.springframework.security.web.session.DisableEncodeUrlFilter.doFilterInternal(DisableEncodeUrlFilter.java:42)
  102. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  103. at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:374)
  104. at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:233)
  105. at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:191)
  106. at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:352)
  107. at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:268)
  108. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  109. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  110. at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:100)
  111. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  112. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  113. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  114. at org.springframework.web.filter.FormContentFilter.doFilterInternal(FormContentFilter.java:93)
  115. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  116. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  117. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  118. at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:201)
  119. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:116)
  120. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  121. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  122. at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:101)
  123. at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:67)
  124. at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)
  125. at io.undertow.servlet.handlers.FilterHandler.handleRequest(FilterHandler.java:84)
  126. at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)
  127. at io.undertow.servlet.handlers.ServletChain$1.handleRequest(ServletChain.java:68)
  128. at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)
  129. at io.undertow.servlet.handlers.RedirectDirHandler.handleRequest(RedirectDirHandler.java:68)
  130. at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:117)
  131. at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)
  132. at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
  133. at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)
  134. at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)
  135. at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)
  136. at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)
  137. at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)
  138. at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
  139. at io.undertow.servlet.handlers.SendErrorPageHandler.handleRequest(SendErrorPageHandler.java:52)
  140. at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)
  141. at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:276)
  142. at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135)
  143. at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:132)
  144. at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48)
  145. at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43)
  146. at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:256)
  147. at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:101)
  148. at io.undertow.server.Connectors.executeRootHandler(Connectors.java:393)
  149. at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:859)
  150. at org.jboss.threads.ContextHandler$1.runWith(ContextHandler.java:18)
  151. at org.jboss.threads.EnhancedQueueExecutor$Task.run(EnhancedQueueExecutor.java:2513)
  152. at org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1538)
  153. at org.xnio.XnioWorker$WorkerThreadFactory$1$1.run(XnioWorker.java:1282)
  154. at java.base/java.lang.Thread.run(Thread.java:833)

From the data I can find out that I using UUID in 2 places (org, user_id) and Based on the given message I tried to create a Mixin but it does not get to work.

Please let me know if anyone had any solutions. Thanks.

答案1

得分: 0

成功解决了。

添加了以下的 MixIn:

  1. @JsonIgnoreProperties(ignoreUnknown = true)
  2. public abstract class UUIDMixIn {
  4.   @JsonCreator
  5.   public static UUID fromString(String uuid) {
  6.     return UUID.fromString(uuid);
  7.   }
  9. }

然后将其注册到 ObjectMapper 实例中:

  1. ObjectMapper objectMapper = new ObjectMapper();    
  2. objectMapper.addMixIn(UUID.class, UUIDMixIn.class);
英文:

I was able to figure it out.

Added the below MixIn

  1. @JsonIgnoreProperties(ignoreUnknown = true)
  2. public abstract class UUIDMixIn {
  3. @JsonCreator
  4. public static UUID fromString(String uuid) {
  5. return UUID.fromString(uuid);
  6. }
  7. }

The registered it with the ObjectMapper instance.

  1. ObjectMapper objectMapper = new ObjectMapper();    
  2. objectMapper.addMixIn(UUID.class, UUIDMixIn.class);

huangapple
  • 本文由 发表于 2023年4月4日 11:50:22
  • 转载请务必保留本文链接:https://go.coder-hub.com/75925379.html
  • jackson-databind
  • jackson-modules
  • java
  • spring-boot
  • spring-security-oauth2
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定