About Heiko Rupp
tl;dr: it is important to add input validation to custom json deserializers in Jackson.
In RHQ we make use of Json parsing in a few places – be it directly in the as7/Wildfly plugin, be it in the REST-api indirectly via RESTEasy 2.3.5, that already does the heavy lifting.
Now we have a bean Link that looks like:
public class Link { String rel; String href;} The standard way for serializing this is
Source : http://www.javacodegeeks.com/2013/08/custom-deserializer-in-jackson-and-validation.html
