blame | 历史 | 原始文档
admin
2024-10-16 7fa83e5dd03f7896bd1d1e8c47f5e926ff3d4ba0 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79

/*


 * Copyright 2020. Huawei Technologies Co., Ltd. All rights reserved.


 


   Licensed under the Apache License, Version 2.0 (the "License");


   you may not use this file except in compliance with the License.


   You may obtain a copy of the License at


 


     http://www.apache.org/licenses/LICENSE-2.0


 


   Unless required by applicable law or agreed to in writing, software


   distributed under the License is distributed on an "AS IS" BASIS,


   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.


   See the License for the specific language governing permissions and


   limitations under the License.


 */


package com.huawei.push.util;


 


import org.apache.http.config.Registry;


import org.apache.http.config.RegistryBuilder;


import org.apache.http.conn.socket.ConnectionSocketFactory;


import org.apache.http.conn.socket.PlainConnectionSocketFactory;


import org.apache.http.conn.ssl.SSLConnectionSocketFactory;


import org.apache.http.impl.client.CloseableHttpClient;


import org.apache.http.impl.client.HttpClients;


import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;


 


import javax.net.ssl.SSLContext;


import javax.net.ssl.TrustManager;


import javax.net.ssl.X509TrustManager;


import java.security.KeyManagementException;


import java.security.NoSuchAlgorithmException;


import java.security.cert.CertificateException;


 


/**


 * A tool for ignoring ssl when creating httpclient


 */


public class IgnoreSSLUtils {


    private static SSLContext createIgnoreVerifySSL() throws NoSuchAlgorithmException, KeyManagementException {


        SSLContext sc = SSLContext.getInstance("TLSv1.2");


 


        X509TrustManager trustManager = new X509TrustManager() {


            @Override


            public void checkClientTrusted(


                    java.security.cert.X509Certificate[] paramArrayOfX509Certificate,


                    String paramString) throws CertificateException {


            }


 


            @Override


            public void checkServerTrusted(


                    java.security.cert.X509Certificate[] paramArrayOfX509Certificate,


                    String paramString) throws CertificateException {


            }


 


            @Override


            public java.security.cert.X509Certificate[] getAcceptedIssuers() {


                return null;


            }


        };


 


        sc.init(null, new TrustManager[]{trustManager}, null);


        return sc;


    }


 


    /**


     * for ignoring verify SSL


     */


    public static CloseableHttpClient createClient() throws KeyManagementException, NoSuchAlgorithmException {


        SSLContext sslcontext = createIgnoreVerifySSL();


 


        Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder.<ConnectionSocketFactory>create()


                .register("http", PlainConnectionSocketFactory.INSTANCE)


                .register("https", new SSLConnectionSocketFactory(sslcontext))


                .build();


        PoolingHttpClientConnectionManager connManager = new PoolingHttpClientConnectionManager(socketFactoryRegistry);


        HttpClients.custom().setConnectionManager(connManager);


 


        return HttpClients.custom().setConnectionManager(connManager).build();


    }


}