Consider not including fields in default Workflow serialization

When using Workflow, the default JSON serializer is [configured to include fields by default](https://github.com/dapr/durabletask-dotnet/blob/main/src/Abstractions/Converters/JsonDataConverter.cs#L11-L17).

```c#
public class JsonDataConverter : DataConverter
{
    // WARNING: Changing default serialization options could potentially be breaking for in-flight orchestrations.
    static readonly JsonSerializerOptions DefaultOptions = new()
    {
        IncludeFields = true,
    };
```

This is unusual as it is not the default in .NET and might lead to unexpected data leaks/disclosure.

Changing the default is a breaking change for existing workflows, but it seems unlikely that users are relying on this unusual behaviour. If anyone is then [the configuration can be overridden](https://github.com/dapr/dotnet-sdk/issues/1537#issuecomment-3056618919).


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Consider not including fields in default Workflow serialization #1582

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Consider not including fields in default Workflow serialization #1582

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions