Even if you implement Java in a simple POJO Java class io. Is serializable also a best practice?

2020-03-03 • Java

In general, let a simple POJO Java class implement Java io. Is serializable a best practice?

Solution

Not usually Joshua Bloch said to implement serializable justice He described some shortcomings:

>Reduces the flexibility to change the class implementation in the future - serialization form is part of the class API > more likely to have some errors and security vulnerabilities - attackers can access the class interior in the serialized byte stream > increases the test burden - now you have to test serialization! > Authors who load subclasses – they must also make their subclasses serializable

Of course, sometimes you need a POJO to implement serializable, such as RMI, but if not, your code will be simpler and safer

The content of this article comes from the network collection of netizens. It is used as a learning reference. The copyright belongs to the original author.

THE END

Java

二维码

Common tools for APK installation package in Android Development

< <上一篇

Java – buffered vs. unbuffered, which one is used?

下一篇>>

搜索内容

Even if you implement Java in a simple POJO Java class io. Is serializable also a best practice?

Solution

热门文章