PHP :: Request #78786 :: json_encode should have an option to disallow objects

json_encode should have an option to disallow objects

Submitted:

2019-11-06 09:25 UTC

Modified:

2019-11-06 13:14 UTC

Votes:	4
Avg. Score:	4.2 ± 0.8
Reproduced:	3 of 4 (75.0%)
Same Version:	2 (66.7%)
Same OS:	2 (66.7%)

From:

andre at webkr dot de

Assigned:

Status:

Open

Package:

JSON related

PHP Version:

7.3.11

OS:

Private report:

CVE-ID:

None

View Add Comment Developer Edit

Welcome! If you don't have a Git account, you can't do anything here.
You can add a comment by following this link or if you reported this bug, you can edit this bug over here.

php.net Username: php.net Password:

Quick Fix:	(description)
	Block user comment
Status:		Assign to:
Package:
Bug Type:
Summary:
From:	andre at webkr dot de
New email:
PHP Version:		OS:

New/Additional Comment:

[2019-11-06 09:25 UTC] andre at webkr dot de

Description:
------------
json_encode() encodes an object by treating its public properties like an array.

This is not always the desired behavior and it's difficult to detect beforehand without walking the whole input array.

Therefore it would be good if json_encode() had an option to make it refuse to encode any object (throw an exception), unless the object implements JsonSerializable.

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2019-11-06 13:14 UTC] cmb@php.net

-Package: Unknown/Other Function +Package: JSON related

[2019-11-13 19:23 UTC] henry dot paradiz at gmail dot com

Agreed.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2023 The PHP Group All rights reserved.	Last updated: Fri Jun 02 01:03:37 2023 UTC