okHttp的https请求忽略ssl证书认证

  • 开发
  • 4

使用okhttp请求第三方https接口返回异常

sun.security.validator.ValidatorException: PKIX path building failed: 
sun.security.provider.certpath.SunCertPathBuilderException: 
unable to find valid certification path to requested target

意思就是非安全的调用,java不认识这个接口证书。java security仓库中没有这个第三方站点的SSL证书,调用失败。

这里为了简单,我直接忽略ssl证书认证,代码如下

import okhttp3.ConnectionPool;
import okhttp3.OkHttpClient;

import java.net.Proxy;
import java.security.KeyStore;
import java.security.SecureRandom;
import java.security.cert.X509Certificate;
import java.util.Arrays;
import java.util.concurrent.TimeUnit;
import javax.net.ssl.*;

/**
 * @author 白**
 * @date 2024-06-12 14:46
 */
public class OkHttpUtil {
    private static OkHttpClient okHttpClient;

    public static ConnectionPool connectionPool = new ConnectionPool(10, 5, TimeUnit.MINUTES);

    public static OkHttpClient getInstance() {
        if (okHttpClient == null) { //加同步安全
            synchronized (OkHttpClient.class) {
                if (okHttpClient == null) { //okhttp可以缓存数据....指定缓存路径
                    okHttpClient = new OkHttpClient.Builder()//构建器
                            .proxy(Proxy.NO_PROXY) //来屏蔽系统代理
                            .connectionPool(connectionPool)
                            .sslSocketFactory(getSSLSocketFactory(),  getX509TrustManager())
                            .hostnameVerifier(getHostnameVerifier())
                            .connectTimeout(600, TimeUnit.SECONDS)//连接超时
                            .writeTimeout(600, TimeUnit.SECONDS)//写入超时
                            .readTimeout(600, TimeUnit.SECONDS)//读取超时
                            .build();
                    okHttpClient.dispatcher().setMaxRequestsPerHost(200);
                    okHttpClient.dispatcher().setMaxRequests(200);
                }
            }
        }
        return okHttpClient;
    }

    /**
     * description 忽略https证书验证
     */
    private static HostnameVerifier getHostnameVerifier() {
        HostnameVerifier hostnameVerifier = new HostnameVerifier() {
            @Override
            public boolean verify(String s, SSLSession sslSession) {
                return true;
            }
        };
        return hostnameVerifier;
    }
    /**
     * description 忽略https证书验证
     */
    private static SSLSocketFactory getSSLSocketFactory() {
        try {
            SSLContext sslContext = SSLContext.getInstance("SSL");
            sslContext.init(null, getTrustManager(), new SecureRandom());
            return sslContext.getSocketFactory();
        } catch (Exception e) {
            throw new RuntimeException(e);
        }
    }

    private static X509TrustManager getX509TrustManager() {
        X509TrustManager trustManager = null;
        try {
            TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
            trustManagerFactory.init((KeyStore) null);
            TrustManager[] trustManagers = trustManagerFactory.getTrustManagers();
            if (trustManagers.length != 1 || !(trustManagers[0] instanceof X509TrustManager)) {
                throw new IllegalStateException("Unexpected default trust managers:" + Arrays.toString(trustManagers));
            }
            trustManager = (X509TrustManager) trustManagers[0];
        } catch (Exception e) {
            e.printStackTrace();
        }

        return trustManager;
    }

    private static TrustManager[] getTrustManager() {
        TrustManager[] trustAllCerts = new TrustManager[]{
                new X509TrustManager() {
                    @Override
                    public void checkClientTrusted(X509Certificate[] chain, String authType) {
                    }

                    @Override
                    public void checkServerTrusted(X509Certificate[] chain, String authType) {
                    }

                    @Override
                    public X509Certificate[] getAcceptedIssuers() {
                        return new X509Certificate[]{};
                    }
                }
        };
        return trustAllCerts;
    }
}

阅读全部

相关推荐

  1. okHttphttps请求忽略ssl证书认证

    2024-06-13 06:44:03       5 阅读

  2. Okhttp 发送https请求忽略ssl认证

    2024-06-13 06:44:03       10 阅读

  5. https忽略ssl证书校验

    2024-06-13 06:44:03       9 阅读

  6. 分享一下自己正在写库ohos_reqwest,无需OpenSSL依赖,支持忽略SSL证书校验http(s)请求库...

    2024-06-13 06:44:03       13 阅读

  7. WINHTTP忽略HTTPS证书

    2024-06-13 06:44:03       38 阅读

  9. Golang - http请求InsecureSkipVerify 字段为 true 来忽略忽略 SSL验证

    2024-06-13 06:44:03       37 阅读

  10. nginx管理:配置SSL证书、把http域名请求转成https、nginx镜像部署VUE项目

    2024-06-13 06:44:03       43 阅读

最近更新

  4. TCP协议是安全的吗?

    2024-06-13 06:44:03       18 阅读

  12. 阿里云服务器执行yum,一直下载docker-ce-stable失败

    2024-06-13 06:44:03       19 阅读

  13. 【Python教程】压缩PDF文件大小

    2024-06-13 06:44:03       18 阅读

  18. 通过文章id递归查询所有评论(xml)

    2024-06-13 06:44:03       20 阅读

热门阅读

  4. 大模型日报2024-06-12

    2024-06-13 06:44:03       11 阅读

  5. 网页自动关闭

    2024-06-13 06:44:03       9 阅读

  6. 全网营销怎么讲?为什么比做单一推广效果更好?

    2024-06-13 06:44:03       8 阅读

  7. 【AI应用探讨】— Meta Llama-3模型应用场景

    2024-06-13 06:44:03       6 阅读

  8. (delphi11最新学习资料) Object Pascal 学习笔记---第14章泛型第3节(泛型约束)

    2024-06-13 06:44:03       9 阅读

  9. 011.编译随机指纹浏览器-禁用webRTC-售卖成品

    2024-06-13 06:44:03       7 阅读

  11. uni-app文件下载 h5 xls 乱码 锟斤拷 Blob pdf打不开

    2024-06-13 06:44:03       11 阅读

  12. Spring Boot中的RESTful API详细介绍及使用

    2024-06-13 06:44:03       4 阅读

  13. spring boot logback.xml文件配置,info、error隔离

    2024-06-13 06:44:03       11 阅读

  16. MySQL 搭建主从报错 1236

    2024-06-13 06:44:03       7 阅读

  20. vue在hash路由模式下实现点击定位滑动

    2024-06-13 06:44:03       6 阅读

  22. 学习AI 机器学习,深度学习需要用到的python库

    2024-06-13 06:44:03       6 阅读

  24. 【代码随想录算法训练营第三十五天|1005.K次取反后最大化的数组和、134.加油站、135.分发糖果】

    2024-06-13 06:44:03       8 阅读

  29. 深度学习每周学习总结N1(one-hot 编码案例)

    2024-06-13 06:44:03       6 阅读