YOUR FEEDBACK
Three RIA Platforms Compared: Adobe Flex, Google Web Toolkit, and OpenLaszlo
NN wrote: Yeah you are right GWT is poor man's Flex. After using GWT on two...
May. 12, 2008 04:50 AM
Did you read today's front page stories & breaking news?


2007 West
GOLD SPONSORS:
Active Endpoints
Your SOA Needs BPEL for Orchestration
BEA
Virtualized SOA: Adaptive Infrastructure for Demanding Applications
Nexaweb
Overcoming Bandwidth Challenges with Nexaweb
TIBCO
What is Service Virtualization?
SILVER SPONSORS:
WSO2
Using Web Services Technologies and FOSS Solutions
Click For 2007 East
Event Webcasts

2008 East
PLATINUM SPONSORS:
Appcelerator
Think Fast: Accelerate AJAX Development with Appcelerator
GOLD SPONSORS:
DreamFace Interactive
The Ultimate Framework for Creating Personalized Web 2.0 Mashups
ICEsoft
AJAX and Social Computing for the Enterprise
Kaazing
Enterprise Comet: Real–Time, Real–Time, or Real–Time Web 2.0?
Nexaweb
Now Playing: Desktop Apps in the Browser!
Sun
jMaki as an AJAX Mashup Framework
POWER PANELS:
The Business Value
of RIAs
What Lies Beyond AJAX?
KEYNOTES:
Douglas Crockford
Can We Fix the Web?
Anthony Franco
2008: The Year of the RIA
Click For 2007 Event Webcasts
SYS-CON.TV
SYS-CON.TV: SOA Power Panel Live From Times Square
TOP THREE LINKS YOU MUST CLICK ON


Java Basics
Java Serialization
Lesson 7, Java Basics

By: Yakov Fain
Digg This!

In lessons 5 and 6 of this series, you've learned how to use some of the Java streams to read or write bytes, characters or numeric data. This lesson is about reading or writing entire Java objects into streams.

Let's say your application uses a class that looks like this: 

class Employee {
 String lName;
 String fName;
 double salary;
 java.util.Date hireDate;
 String address;
}

Now consider the following scenario: a program HeadQuarterEmpProcessor creates an instance of the object Employee. The values of its attributes (object's state) have to be saved in a file or some other stream. Later on, another program called BranchEmpProcessor needs to recreate the instance of this object Employee in memory.

We could have done it by using one of the streams like DataOutputStream, FileWriter or others. In this case both programs would need to know a format of the saved file (data types, order of the attributes and delimiters). Luckily, Java offers a more elegant way called object serialization, which greatly simplifies the process of objects exchange.

To send the entire object to a stream a program can use the class java.io.ObjectOutputStream, while the class java.io.ObjectInputStream knows how to get an object from a stream. To serialize an object means to convert it into a set of bytes and send it to a stream. To deserialize and object means to read these bytes from a stream and recreate the instance of the received object.

How to Make a Class Serializable

To make a class serializable, just declare that this class implements the interface Serializable: 

class Employee implements java.io.Serializable {
 String lName;
 String fName;
 double salary;
 java.util.Date hireDate;
 String address;
}

The good news is that Serializable interface does not force you to implement any methods, that's why modification of the class Employee was minimal.

All attributes of the class Employee must have either primitive data types, or represent objects that are also serializable.

How to Serialize an Object

To serialize an object into a stream perform the following actions:

  • Open one of the output streams, for example FileOutputStream
  • Chain it with the ObjectOutputStream
  • Call the method writeObject() providing the instance of a Serializable object as an argument.
  • Close the streams

    The following example performs all these steps and creates a snapshot of the object Employee in the file called NewEmployee.ser 

    import java.io.*;
import java.util.Date;

public class HeadQuarterEmpProcessor {

 public static void main(String[] args) {
	Employee emp = new Employee();
	emp.lName = "John";
	emp.fName = "Smith"; 
	emp.salary = 50000;
      emp.address = "12 main street";
      emp.hireDate = new Date(); 
    
      FileOutputStream fOut=null;
      ObjectOutputStream oOut=null;
	   
      try{
       fOut= new FileOutputStream("c:\\NewEmployee.ser");
	 oOut = new ObjectOutputStream(fOut);
	 oOut.writeObject(emp);  //serializing employee
	 System.out.println(
        "An employee is serialized into c:\\NewEmployee.ser");
      }catch(IOException e){
	  e.printStackTrace(); 
      }finally{
  	  try {
	    oOut.flush();
	    oOut.close();
	    fOut.close();
	  } catch (IOException e1) {
	   e1.printStackTrace();
	  }
	}
    }
}

    If you do not want to serialize sensitive information such as salary, declare this variable using the keyword transient:

    transient double salary;

    The values of static and transient member variables are not serialized.

    How to Deserialize an Object

    To deserialize an object, perform the following steps:

  • Open an input stream
  • Chain it with the ObjectInputStream
  • Call the method readObject() and cast the returned object to the class that is being deserialized.
  • Close the streams

    The next example reads our file NewEmployee.ser and recreates the instance of the object Employee: 

    import java.io.*;

public class BranchEmpProcessor {

  public static void main(String[] args) {
   FileInputStream fIn=null;
   ObjectInputStream oIn=null;
	   
   try{
    fIn= new FileInputStream("c:\\NewEmployee.ser");
    oIn = new ObjectInputStream(fIn);
   
    //de-serializing employee
    Employee emp = (Employee) oIn.readObject();
				 
    System.out.println("Deserialized " + emp.fName + " " 
                 + emp.lName + " from NewEmployee.ser ");
   }catch(IOException e){
	  e.printStackTrace(); 
   }catch(ClassNotFoundException e){
        e.printStackTrace(); 
   }finally{
	try {
        oIn.close();
	  fIn.close();
	} catch (IOException e1) {
	  e1.printStackTrace();
	}
   }
 }
}

    The class BranchEmpProcessor will produce the following output:

    Deserialized Smith John from NewEmployee.ser

    Please note that we did not explicitly created an instance of the object Employee - JVM did it for us. Make sure that definition of the class Employee is available to JVM that reads the stream. In distributed applications it usually runs on a remote machine.

    During the process of deserialization all transient variables will be initialized with default values according to their type, for example, integer variables will have the value of zero.

    Interface Externalizable

    The method writeObject() sends all attributes of an object into a stream. This could lead to unnecessary large object footprint, especially if you need to serialize the values only of some of the instance variables. Java provides Externalizable interface that gives you more control over what is being serialized and it can produce smaller object footprint.

    Externalizable interface is a subclass of Serializable.

    This interface defines 2 methods: readExternal() and writeExternal() and you have to implement these methods in the class that will be serialized (Employee). In these methods you'll have to write code that reads/writes only the values of the attributes you are interested in. Programs that perform serialization and deserialization have to write and read these attributes in the same sequence.

    The following class Employee2 serializes only the values of the last name and salary. 

    import java.io.ObjectOutput;
import java.io.ObjectInput;
class Employee2 implements Externalizable {
 String lName;
 String fName;
 double salary; 
 java.util.Date hireDate;
 String address;
 
  public void writeExternal(ObjectOutput stream)
  				 throws java.io.IOException {
  // Serializing only salary and last name  
   stream.writeDouble(salary); 
   stream.writeUTF(lName);  // String encoded in UTF-8 format
  }

 public void readExternal(ObjectInput stream)
 				 throws java.io.IOException {
      salary = stream.readDouble();  
	  lName  = stream.readUTF();
 }

}

    The class HeadQuaterEmpProcessor2 shows how to externalize the object Employee2: 

    import java.io.*;
import java.util.Date;

public class HeadQuarterEmpProcessor2 {

	public static void main(String[] args) {
		Employee2 emp = new Employee2();
		emp.fName = "John";
		emp.lName = "Smith"; 
		emp.salary = 50000;
	    emp.address = "12 main street";
	    emp.hireDate = new Date(); 
    
	   FileOutputStream fOut=null;
	   ObjectOutputStream oOut=null;
	   
	   try{
	     fOut= new FileOutputStream("c:\\NewEmployee2.ser");
	     oOut = new ObjectOutputStream(fOut);
	     emp.writeExternal(oOut);  //serializing employee
	     System.out.println(
            "An employee is serialized into c:\\NewEmployee2.ser");

	   }catch(IOException e){
	   	  e.printStackTrace(); 
	   }finally{
		try {
			oOut.flush();
			oOut.close();
			fOut.close();
		} catch (IOException e1) {
			e1.printStackTrace();
		}
	   }
	}
}

    Unlike with Serializable interface, we had to write a little more code to implement Externalizable interface, but the size of the file NewEmployee2.ser is only 21 bytes, whereas the file NewEmployee.ser has 207 bytes. First of all, we serialized the values of only two attributes, and the other reason is that files created using Externalizable interface contain data only, while files created by default Java serialization contain class metadata that include attribute names.

    The next code snippet shows you how to recreate an externalized object: 

    fIn= new FileInputStream("c:\\NewEmployee2.ser");
oIn = new ObjectInputStream(fIn);

Employee2 emp = new Employee2();
emp.readExternal(oIn);

    Serialization in the Real World

    In some types of applications you have to write the code to serialize objects, but in many cases serialization is performed behind the scenes by various server-side containers. These are some of the typical uses of serialization:

  • To persist data for future use.
  • To send data to a remote computer using such client/server Java technologies as RMI or socket programming.
  • To "flatten" an object into array of bytes in memory.
  • To exchange data between applets and servlets.
  • To store user session in Web applications.
  • To activate/passivate enterprise java beans.
  • To send objects between the servers in a cluster.

    When you use serialization in time-critical applications, for example real-time stock trading systems, the size of the serialized objects should be minimal. Keep in mind that variables with longer names produce larger footprints during serialization, and this may substantially slow down your application. Think of a high volume of trade orders that is being serialized. I remember working on the application where a class TradeOrder had about a hundred member variables. After renaming the variables into meaningless v1, v2, and so on, the size of one TradeOrder instance was reduced by a thousand bytes. And we are talking about serializing of thousands orders over the network!

    If performance is your primary goal, use Externalizable interface instead of Serializable. Yes, you'll have to write code to serialize each attribute, but this may speed up serialization process substantially.

    While applets can connect to a remote computer using socket or RMI programming (these technologies will be explained in the future lessons of this series), HTTP protocol and such Java classes as URL and URLConnection simplify network programming. With an HTTP protocol, applets can receive or send not only a text, but also binary objects using Java Serialization.

    When an EJB container decides to passivate (unload from memory) so-called stateful session bean, JVM persists its state in a safe place (usually on a disk). Later on, when this bean will be activated again, all its variables will be automatically deserialized by the EJB container.

    While it may not be too difficult for JVM to convert a primitive integer variable into four bytes for serialization, it's not as simple in case of classes containing variables with references to other objects. The process of converting such complex object into a sequence of bytes is called marshalling and the process of reconstructing of the objects from these bytes is called unmarshalling and Java does this job for you.

    Even though we have not learned yet how to create Web applications, I still want to mention that objects used for tracking of the user sessions should be serializable, otherwise you may not be able to deploy these application in a cluster of servers.

    Java serialization is a simple but powerful feature of the language, and you definitely will have a chance to use it in your applications.

    • Published Jan. 25, 2006 — Reads 79,966
    Copyright © 2008 SYS-CON Media. All Rights Reserved.
    Related Stories
    ▪ Your First Java Program
    ▪ Intro to Object-Oriented Programming with Java
    ▪ Methods, Constructors, Overloading and Access Levels
    ▪ Java Exceptions
    ▪ Java Streams Basics
    ▪ Reading Data from the Internet
    ▪ Java Serialization
    ▪ Teaching Kids Programming: Even Younger Kids Can Learn Java
    ▪ Taking a Sun Java Studio Creator for a Drive
    ▪ Java Basics: Introduction to Java Threads, Part 1
    ▪ Java Gotchas: Instance Variables Hiding
    ▪ Java Basics: Introduction to Java Threads, Part 2
    ▪ SYS-CON.TV Webcast: Eclipse IDE For Students, Useful Eclipse Tips and Tricks
    ▪ Java Basics: Lesson 11, Java Packages and Imports (Live Video Education)
    Related Links
    ▪ Java 2 Enterprise Edition 1.4 (J2EE 1.4) Bible ( Fain, coauthor)
    ▪ Java Programming for Kids, (Yakov Fain)
    ▪ The Java Tutorial for the Real World (Yakov Fain, author)
    About Yakov Fain
    Yakov Fain is a managing principal of Farata Systems, consulting, training and product company. He has authored several Java books, dozens of technical articles. SYS-CON Books released his latest co-authored book , "Rich Internet Applications with Adobe Flex and Java: Secrets of the Masters" in Spring 2007. Sun Microsystems has nominated and awarded Yakov with the title Java Champion. He leads the Princeton Java Users Group. Yakov teaches Java and Flex 2 part time at New York University. He is an Adobe Certified Flex Instructor and an Editor-in-Chief of Flex Developers Journal.

    Sreerag wrote: You have explained it in a simple, nice manner. Thanks a lot !
    read & respond »
    Sreerag K M wrote: The presentation is so nice, simple. Thanks a lot
    read & respond »
    Josh wrote: Ravi, If you serialize an externalizeable object, it''s readExternal or writeExternal methods will automatically get called. So, the scenario you mention should never happen. When you implement Externalizable, you take control of the serialization completely, so the transient modifier will not have an effect on fields in the Externalizable object.
    read & respond »
    Ravi wrote: Excellent article. I had a concern with transient data serialization when we do a serialization with externalizable interface. I mean when I implement a class with externalizable and do a normal serialization without being used its readExternal or writeExternal calls, then the Transient data is still get serialized. Can anyone update me on this point?
    read & respond »
    Josh wrote: Good article. As the previous comment indicates, using Java serialization can introduce some problems when the objects are read in by a different version of the software. I don''t recommend using Java serialization for ''durable'' persistence for this reason. Using Externalizable can help, but for complex applications this encourages the programmer to blend the persistence and other, unrelated aspects into the same object, which is not the best design. I would recommend delegating the Externalizable implementation into another object in this case.
    read & respond »
    Mathieu wrote: Very Good introductory material. However I would like to add a paragraph on class version management. Upon a change of the code of your class if you try to read an old serialized data, you may experience error. Externalize interface is for now the safe way to prevent yourself from that.
    read & respond »
    java-user wrote: Excellent article. Liked real-world experiences shared by author.
    read & respond »
    andre wrote: Awesome! Did not know about the alternative to Serializable which exposes your application.
    read & respond »
    LATEST JAVA STORIES & POSTS
    Chris Keene's Prescription for Curing the Java Flu
    By Christopher Keene
    At WaveMaker, we have hitched our wagon to Java so I hope very much that JavaOne is showing us the ghost of Java present, not the ghost of Java to come. The Sun promise to put Java runtimes everywhere is meaningless if nobody wants to develop for those runtimes. Adobe and Microso
    Virtualization Journal Attracts JavaOne Attendees to SYS-CON Media Booth
    By Virtualization News Desk
    Virtualization Journal now reaches more than 60,000 online readers with monthly digital editions and weekly newsletters. The premier issue of the magazine's print edition, which debuts on May 6, 2008, at JavaOne in San Francisco, as a media sponsor of this event, will be availabl
    Real-Time Kaazing Solution and Sun's Glassfish Forge RIA Alliance
    By RIA News Desk
    Kaazing Corporation and Sun Microsystems announced an alliance to deliver the scalable and advanced real-time Web 2.0 platform. The integration between Kaazing's real-time Rich Internet Application (RIA) solution, Enterprise Comet, and Sun Microsystems' open source Java EE applic
    Sun Challenges Linux
    By Maureen O'Gara
    Sun's mule train has finally pulled into Indiana after three years on the road. Indiana is the Linux-friendly Fedora-like OpenSolaris project meant to move the Solaris-shy Linux community off Linux and on to Solaris tempted by Solaris widgetry like the highly scalable, rollback-e
    AJAX World - Sun Talks Up its Late-to-the-Party AIR-Silverlight Rival
    By Maureen O'Gara
    At Java One this week Sun has been selling its year -old-but-still-upcoming - and definitely late-to-the-party - Adobe AIR- and Microsoft Silverlight-competitive JavaFX Rich Client environment as a potential revenue-generator capable of putting ads on mobile applications and JavaF
    MySQL Backs Off Closed Source Plan
    By Maureen O'Gara
    MySQL has backed off a plan to charge for some encryption and compression backup widgetry in the next version of the database - and, heavens, NOT OPEN SOURCE THE STUFF, an idea it trotted a few weeks ago and predictably caught hell for. Sun, which bought MySQL for a billion dolla
    SUBSCRIBE TO THE WORLD'S MOST POWERFUL NEWSLETTERS
    SUBSCRIBE TO OUR RSS FEEDS & GET YOUR SYS-CON NEWS LIVE!
    Click to Add our RSS Feeds to the Service of Your Choice:
    Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
    myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
    Publish Your Article! Please send it to editorial(at)sys-con.com!

    Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021
    SYS-CON FEATURED WHITEPAPERS

    MOST READ THIS WEEK
    Three RIA Tools Examined: JSF, Flex, and JavaFX
    By Max Katz
    Java Annotations + Compiler API + Annotation Processing = Remarkable Results
    By Dmitry Fazunenko
    Sara Jessica Parker Should Upgrade To Leopard
    By Yakov Fain
    Sun Certifying Ubuntu
    By Maureen O'Gara
    Ubuntu Here We Come! - Java Finally To Become 100% Open Source
    By Java News Desk
    CodeGear Enhances JBuilder IDE
    By Java News Desk
    Java Updater: Sun and Google Are as Bad as Apple
    By Bob Plankers
    The Maven Build Process
    By Ravi Muthusubramanian
    SpringSource CEO: "The Future of Enterprise Java is Clear and Bright"
    By Java News Desk
    Clerity Extends Migration and Modernization Role With Investment in Java Technology Innovator Veryant
    By Java News Desk
    Systems Integration with Openadaptor
    By Kris Lachor
    Sun Microsystems and Java Card Forum Announce Next Generation of Java Card Technology
    By Java News Desk
    ADS BY GOOGLE
    BREAKING JAVA NEWS
    Day Software to Present at Henry Stewart DAM Show
    Day Software (SWX:DAYN) (OTCQX:DYIHY), a leading provider of global content management
    May. 9, 2008 04:00 PM