Java跳过证书访问HTTPS

李奈 - Leemon2023-09-16 10:28

Java跳过证书访问HTTPS

文章目录

java直接发送请求访问https地址的时候,若没有导入证书,会出现各种问题,如307。

以下会以是否SpringBoot来解决这个问题,做法一致,都是绕过证书进行处理的。

一,非Spring方式

创建一个请求代理类,为所有的HTTPS请求访问前做一下操作

java 复制代码 
public class IgnoreHttpsProxyRequest {

	/**
	 * 通過HTTPS的url登錄
	 * @param urlStr 目標url
	 * @return	查詢結果
	 * @throws IOException
	 * @throws NoSuchAlgorithmException
	 * @throws KeyManagementException
	 */
	public String get(String urlStr, String token, String type) throws IOException, NoSuchAlgorithmException, KeyManagementException {
		//繞過https
		HttpsURLConnection.setDefaultHostnameVerifier(new IgnoreHttpsProxyRequest().new NullHostNameVerifier());
		SSLContext sslContext = SSLContext.getInstance("TLS");
		sslContext.init(null, trustManagers, new SecureRandom());
		HttpsURLConnection.setDefaultSSLSocketFactory(sslContext.getSocketFactory());
		//建立連接
		URL url = new URL(urlStr);
		HttpURLConnection connection = (HttpURLConnection) url.openConnection();
		connection.setRequestMethod(type);
		connection.setRequestProperty(HttpHeaders.AUTHORIZATION, "Bearer " + token);
		connection.connect();
		//獲取查詢結果
		InputStream inputStream = connection.getInputStream();
		if (inputStream == null) {
			return null;
		}
		BufferedReader bufferedReader = new BufferedReader(new InputStreamReader(inputStream));
		StringBuilder sb = new StringBuilder();
		String tmp = null;
		while ((tmp = bufferedReader.readLine()) != null) {
			sb.append(tmp);
		}
		bufferedReader.close();
		inputStream.close();
		return sb.toString();

	}

	static TrustManager[] trustManagers = new TrustManager[] {
				new X509TrustManager() {
					@Override
					public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {

					}

					@Override
					public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {

					}

					@Override
					public X509Certificate[] getAcceptedIssuers() {
						return null;
					}
				}
		};

    public class NullHostNameVerifier implements HostnameVerifier {

		@Override
		public boolean verify(String s, SSLSession sslSession) {
			return true;
		}
	}

}

二,SpringBoot方式

先创建一个跳过证书验证,信任所有站点的请求客户端factory

java 复制代码 
package com.foxconn.dsc.matrix.api;

import org.springframework.http.client.SimpleClientHttpRequestFactory;

import javax.net.ssl.*;
import java.io.IOException;
import java.net.HttpURLConnection;
import java.security.SecureRandom;
import java.security.cert.X509Certificate;

/**
 * @ClassName: SkipHttpsRequestFactory
 * @Description:
 * @author: lemon
 * @date: 2023/9/14 13:56
 */
public class SkipHttpsRequestFactory extends SimpleClientHttpRequestFactory {

    @Override
    protected void prepareConnection(HttpURLConnection connection, String httpMethod) throws IOException {
        if (connection instanceof HttpsURLConnection) {
            prepareHttpsConnection((HttpsURLConnection) connection);
        }
        super.prepareConnection(connection, httpMethod);
    }

    private void prepareHttpsConnection(HttpsURLConnection connection) {
        connection.setHostnameVerifier(new SkipHostnameVerifier());
        try {
            connection.setSSLSocketFactory(createSslSocketFactory());
        } catch (Exception ex) {
            // Ignore
        }
    }

    private SSLSocketFactory createSslSocketFactory() throws Exception {
        SSLContext context = SSLContext.getInstance("TLS");
        context.init(null, new TrustManager[] { new SkipX509TrustManager() }, new SecureRandom());
        return context.getSocketFactory();
    }

    private class SkipHostnameVerifier implements HostnameVerifier {

        @Override
        public boolean verify(String s, SSLSession sslSession) {
            return true;
        }

    }

    private static class SkipX509TrustManager implements X509TrustManager {

        @Override
        public X509Certificate[] getAcceptedIssuers() {
            return new X509Certificate[0];
        }

        @Override
        public void checkClientTrusted(X509Certificate[] chain, String authType) {
        }

        @Override
        public void checkServerTrusted(X509Certificate[] chain, String authType) {
        }
    }

}

注入RestTemplate类时,构造时将该工厂类加上。

java 复制代码 
    @Bean
    public RestTemplate restTemplate() {
        SimpleClientHttpRequestFactory factory = new SkipHttpsRequestFactory();
        RestTemplate restTemplate = new RestTemplate(factory);
        return restTemplate;
    }

使用时将其注入

java 复制代码 
@Resource
private RestTemplate restTemplate;

配置完毕之后,就可以直接调用了

java 复制代码 
ResponseEntity<String> response = restTemplate.exchange(builder.build().encode().toUri(), HttpMethod.GET, entity, String.class);
相关推荐
一颗知足的心1 分钟前
Go语言之路————接口、泛型
开发语言·golang
沉到海底去吧Go10 分钟前
【图片识别改名】批量读取图片区域文字识别后批量改名,基于Python和腾讯云的实现方案
开发语言·python·腾讯云
振鹏Dong11 分钟前
JVM | CMS垃圾收集器详解
java·jvm
情报员00716 分钟前
Java练习6
java·算法·排序算法
MarkHD22 分钟前
第一天 车联网定义、发展历程与生态体系
开发语言·php
andrew_121925 分钟前
JVM的内存管理、垃圾回收、类加载和参数调优
java·jvm
百锦再27 分钟前
Python深度挖掘:openpyxl和pandas的使用详细
java·开发语言·python·框架·pandas·压力测试·idea
microhex31 分钟前
Glide 如何加载远程 Base64 图片
java·开发语言·glide
chilling heart40 分钟前
JAVA---集合ArrayList
java·开发语言
ss27340 分钟前
基于Springboot + vue实现的中医院问诊系统
java·spring boot·后端
热门推荐
01KGG转MP3工具|非KGM文件|解密音频02从零安装 LLaMA-Factory 微调 Qwen 大模型成功及所有的坑03西电B测-计算机网络综合实验(含验收问题)04Coze扣子平台完整体验和实践(附国内和国际版对比)05YOLOv8入门 | 重要性能衡量指标、训练结果评价及分析及影响mAP的因素【发论文关注的指标】06DeepSeek各版本说明与优缺点分析07【VIsion Master】机器视觉软件二次开发(C#版本)学习笔记08yolov8,yolo11,yolo12 服务器训练到部署全流程 笔记09我决定放弃搞 Java 了10Python基于Flask的豆瓣电影数据分析可视化系统(附源码,文档说明)