class versioning recommendations/best practices #200

chrylis · 2015-04-30T16:35:18Z

I'm running into issues where new class versions are changing serialVersionUIDs and throwing deserialization exceptions when a user with an existing session holding serialized data from an old class version tries to view a page. Are there any particular recommendations or best practices on how to handle incompatible serialization versions with Spring Session? Is there any manageable way to handle this in a Web application, such as at least saying "there was a problem" and explicitly expiring the session so the user can log back in?

The text was updated successfully, but these errors were encountered:

pcornelissen · 2016-02-01T03:41:19Z

I think this is the same problem that is bugging me and others (see #320 for example). It should be solvable by #283, although you need to come up with a serializer on your own.

rwinch · 2016-02-01T16:24:44Z

@pcornelissen Spring Data Redis provides Jackson2JsonRedisSerializer. Does that help?

This was referenced Nov 5, 2015

SerializationFailedException after re-deploying with changed session object #280

Closed

Custom Encoding #233

Open

pcornelissen mentioned this issue Feb 1, 2016

Provide reliable serialization mechanism (not objectstream) #348

Open

spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label May 23, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

class versioning recommendations/best practices #200

class versioning recommendations/best practices #200

chrylis commented Apr 30, 2015

pcornelissen commented Feb 1, 2016

rwinch commented Feb 1, 2016

class versioning recommendations/best practices #200

class versioning recommendations/best practices #200

Comments

chrylis commented Apr 30, 2015

pcornelissen commented Feb 1, 2016

rwinch commented Feb 1, 2016