Java繞過證書訪問https的方法

本文轉載自查看原文 2020-07-27 10:50 442

代碼如下：

package httpstest;

import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStreamReader;
import java.io.PrintStream;
import java.io.PrintWriter;
import java.net.URL;
import java.security.SecureRandom;
import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;

public class HttpRequest
{
    public static String sendPost(String url, String param)
    {
        PrintWriter out = null;
        BufferedReader in = null;
        String result = "";
        try
        {
            //免證書訪問https
            TrustManager[] tm = { new MyX509TrustManager() };
            SSLContext sslContext = SSLContext.getInstance("SSL");
            sslContext.init(null, tm, new SecureRandom());
            SSLSocketFactory ssf = sslContext.getSocketFactory();

            URL realUrl = new URL(url);
            HttpsURLConnection conn = (HttpsURLConnection)realUrl.openConnection();
            
            conn.setHostnameVerifier(new TrustAnyHostnameVerifier());
            conn.setSSLSocketFactory(ssf);
            conn.setRequestProperty("accept", "*/*");
            conn.setRequestProperty("connection", "Keep-Alive");
            conn.setRequestProperty("content-Type", "application/json");
            conn.setRequestProperty("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1;SV1)");
            //發送post請求必須設置這兩行
            conn.setDoOutput(true);
            conn.setDoInput(true);

            //獲取URLConnection對象對應的輸出流
            out = new PrintWriter(conn.getOutputStream());
            //發送請求參數
            out.print(param);
            //flush輸出流的緩沖
            out.flush();

            //定義BufferedReader輸入流來讀取URL的響應
            in = new BufferedReader( new InputStreamReader(conn.getInputStream(), "utf-8"));
            String line;
            while ((line = in.readLine()) != null)
                result = result + line;
        }
        catch (Exception e)
        {
            System.out.println("發送 POST 請求出現異常！" + e);
            e.printStackTrace();
        }
        finally
        {
            try {
                if (out != null) {
                    out.close();
                }
                if (in != null)
                    in.close();
            }
            catch (IOException ex)
            {
                ex.printStackTrace();
            }
        }
        return result;
    }
    //服務器主機名校驗
    public static class TrustAnyHostnameVerifier implements HostnameVerifier {
        public boolean verify(String hostname, SSLSession session) {
            return true;
        }
    }
}

還需要定義一個證書管理器的類：

package httpstest;

import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import javax.net.ssl.X509TrustManager;

public class MyX509TrustManager
        implements X509TrustManager
{
    public void checkClientTrusted(X509Certificate[] chain, String authType)
            throws CertificateException
    {
    }

    public void checkServerTrusted(X509Certificate[] chain, String authType)
            throws CertificateException
    {
    }

    public X509Certificate[] getAcceptedIssuers()
    {
        return null;
    }
}

免責聲明！

本站轉載的文章為個人學習借鑒使用，本站對版權不負任何法律責任。如果侵犯了您的隱私權益，請聯系本站郵箱yoyou2525@163.com刪除。

猜您在找 java訪問https繞過證書信任 iOS UIWebView 訪問https繞過證書驗證的方法 Java爬蟲--Https繞過證書 HTTPS 帶證書 java 訪問 java 訪問https忽略證書 Java中創建訪問HTTPS的自簽名證書的方法 Https繞過證書驗證 https HttpUtils 繞過證書 Java實現 HTTP/HTTPS請求繞過證書檢測 java使用jsoup時繞過https證書驗證