I use the JavaScriptSerializer class of ASP.net to serialize my object and return it to the client side. How can I deserialize the string using JavaScript?
Asked
Active
Viewed 3,896 times
0
Jeffrey Hantin
- 35,734
- 7
- 75
- 94
Jishnu A P
- 14,202
- 8
- 40
- 50
-
Obligatory link: [json.org](http://json.org) – Jan 21 '11 at 04:53
-
"JSON Object" is kind of an oxymoron. It's either an object, or a JSON string. Both not both at the same time. – Ates Goral Jan 21 '11 at 05:11
4 Answers
6
If you're using jQuery already, you'll be happy to know that you can parse a JSON string with jQuery.parseJSON.
If you aren't using jQuery and don't want to, you can always use the wonderful JSON.parse or json_parse, written by none other than Douglas Crockford himself.
I would avoid eval() if it isn't necessary.
Community
- 1
- 1
Zack The Human
- 8,373
- 7
- 39
- 60
-
+1 because ... 1) *Someone else* has already solved this problem 2) *Someone else* has already solved this problem in a good way. – Jan 21 '11 at 04:55
-
Except that jQuery.parseJSON() doesn't serialize .Net DateTime objects into jscript date objects. Instead they're simply deserialized to strings. – Jeff LaFay Sep 13 '12 at 15:26
-
@jlafay JSON (as per the JSON specification) doesn't support `Date` objects. Since `jQuery.parseJSON` will parse a valid `JSON` string into a JavaScript object, I would not expect it to deserialize `Date` objects at all regardless of their format. – Zack The Human Oct 28 '12 at 00:34
3
I am going to propose ... do nothing. This assumes the serialized result is returned with the page and/or an additional HTML fragment.
// In some JavaScript area somewhere in the ASP page
var myObject = <%= JSONIfiedObjectResult %>;
This works and is valid because JSON is a subset of JavaScript literals. Note that I did not put quotes around the <%= %>.
If the de-serialization is the result on an AJAX call returning JSON, etc, then see Zack's answer.
0
Pretty trivial -- just do
var x = eval(theString);
which should get everything except ASP.Net's unique serialization of DateTime, which is not supported by "real" JSON and is an ASP.Net extension. To use ASP.Net's deserializer, make sure you include an <asp:ScriptManager> tag in your page, and call
var x = Sys.Serialization.JavaScriptSerializer.deserialize(theString);
which will invoke the special Date handling and probably get you better security.
Jeffrey Hantin
- 35,734
- 7
- 75
- 94
-
@pst What? The alternative is there -- and if you use that alternative you get Date handling thrown in. – Jeffrey Hantin Jan 21 '11 at 05:16
0
Pretty standard, not so safe:
eval('(' + json + ')');
Kind of cool thing that jQuery does, still not very safe:
(new Function('return ' + json))();
sdleihssirhc
- 42,000
- 6
- 53
- 67