一、因為在使用https發送請求的時候會涉及,驗證方式。但是這種方式在使用的時候很不方便。特別是在請求外部接口的時候,所以這我寫了一個跳過驗證的方式。(供參考)
二、加入包,這里用的是commons-httpclient 3.1 的包。一般請求采用最新的httpclient4.5就可以了
<dependency>
<groupId>commons-httpclient</groupId>
<artifactId>commons-httpclient</artifactId>
<version>3.1</version>
</dependency>
三、這里我們實現3個類
1、MyX509TrustManager(這個方法直接實現X509TrustManager,X509TrustManager在javax.net.ssl.X509TrustManager里面)
這里直接實現不用改任何東西
import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import javax.net.ssl.X509TrustManager; public class MyX509TrustManager implements X509TrustManager { /* (non-Javadoc) * @see javax.net.ssl.X509TrustManager#checkClientTrusted(java.security.cert.X509Certificate[], java.lang.String) */ public void checkClientTrusted(X509Certificate[] arg0, String arg1) throws CertificateException { } /* (non-Javadoc) * @see javax.net.ssl.X509TrustManager#checkServerTrusted(java.security.cert.X509Certificate[], java.lang.String) */ public void checkServerTrusted(X509Certificate[] arg0, String arg1) throws CertificateException { } /* (non-Javadoc) * @see javax.net.ssl.X509TrustManager#getAcceptedIssuers() */ public X509Certificate[] getAcceptedIssuers() { return null; } }
2、MySecureProtocolSocketFactory(這里我們需要用到SSLContext,還需要改寫一個實現SecureProtocolSocketFactory的方法)
import java.io.IOException; import java.net.InetAddress; import java.net.Socket; import java.net.UnknownHostException; import javax.net.ssl.SSLContext; import javax.net.ssl.TrustManager; import org.apache.commons.httpclient.ConnectTimeoutException; import org.apache.commons.httpclient.HttpClientError; import org.apache.commons.httpclient.params.HttpConnectionParams; import org.apache.commons.httpclient.protocol.ControllerThreadSocketFactory; import org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory; public class MySecureProtocolSocketFactory implements SecureProtocolSocketFactory { //這里添加一個屬性,主要目的就是來獲取ssl跳過驗證 private SSLContext sslContext = null; /** * Constructor for MySecureProtocolSocketFactory. */ public MySecureProtocolSocketFactory() { } /** * 這個創建一個獲取SSLContext的方法,導入MyX509TrustManager進行初始化 * @return */ private static SSLContext createEasySSLContext() { try { SSLContext context = SSLContext.getInstance("SSL"); context.init(null, new TrustManager[] { new MyX509TrustManager() }, null); return context; } catch (Exception e) { throw new HttpClientError(e.toString()); } } /** * 判斷獲取SSLContext * @return */ private SSLContext getSSLContext() { if (this.sslContext == null) { this.sslContext = createEasySSLContext(); } return this.sslContext; } //后面的方法基本上就是帶入相關參數就可以了 /* * (non-Javadoc) * * @see org.apache.commons.httpclient.protocol.ProtocolSocketFactory#createSocket(java.lang.String, * int, java.net.InetAddress, int) */ public Socket createSocket(String host, int port, InetAddress clientHost,int clientPort) throws IOException, UnknownHostException { return getSSLContext().getSocketFactory().createSocket(host, port,clientHost, clientPort); } /* * (non-Javadoc) * * @see org.apache.commons.httpclient.protocol.ProtocolSocketFactory#createSocket(java.lang.String, * int, java.net.InetAddress, int, * org.apache.commons.httpclient.params.HttpConnectionParams) */ public Socket createSocket(final String host, final int port,final InetAddress localAddress, final int localPort, final HttpConnectionParams params) throws IOException,UnknownHostException, ConnectTimeoutException { if (params == null) { throw new IllegalArgumentException("Parameters may not be null"); } int timeout = params.getConnectionTimeout(); if (timeout == 0) { return createSocket(host, port, localAddress, localPort); } else { return ControllerThreadSocketFactory.createSocket(this, host, port,localAddress, localPort, timeout); } } /* * (non-Javadoc) * * @see SecureProtocolSocketFactory#createSocket(java.lang.String,int) */ public Socket createSocket(String host, int port) throws IOException,UnknownHostException { return getSSLContext().getSocketFactory().createSocket(host, port); } /* * (non-Javadoc) * * @see SecureProtocolSocketFactory#createSocket(java.net.Socket,java.lang.String,int,boolean) */ public Socket createSocket(Socket socket, String host, int port,boolean autoClose) throws IOException, UnknownHostException { return getSSLContext().getSocketFactory().createSocket(socket, host,port, autoClose); } }
3、然后就是httpclient了,這里實現的方式很單間了,只要聲明MySecureProtocolSocketFactory加入就可以了Protocol
import org.apache.commons.httpclient.methods.GetMethod; import org.apache.commons.httpclient.protocol.Protocol; import org.apache.commons.httpclient.protocol.ProtocolSocketFactory; /* * 利用HttpClient進行post請求的工具類 */ public class HttpClientUtil { public static String doGet(String url) throws Exception { //聲明 ProtocolSocketFactory fcty = new MySecureProtocolSocketFactory(); //加入相關的https請求方式 Protocol.registerProtocol("https", new Protocol("https", fcty, 443)); //發送請求即可 org.apache.commons.httpclient.HttpClient httpclient = new org.apache.commons.httpclient.HttpClient(); GetMethod httpget = new GetMethod(url); System.out.println("======url:" + url); try { httpclient.executeMethod(httpget); return httpget.getResponseBodyAsString(); } catch (Exception ex) { ex.printStackTrace(); throw new Exception(ex.getMessage()); } finally { httpget.releaseConnection(); } } }
四、這里基本上就完成了,在會用的時候只要聲明MySecureProtocolSocketFactory加入就可以了Protocol,然后就可以實現驗證的跳過過了