今天和商户技术解决httpclient请求https问题,对方一直提示“javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated”,无论我怎么调试都不行,最后悲催的发现对方使用的jdk7(我本地使用的是jdk6),原来JDK7 has changed the default Java security settings to disable MD2 algorithm to sign SSL certificates.,解决方案为:
The default Java security settings can be re-enabled by editing JDK_HOME/jre/lib/security/java.security and commenting out the following line:
jdk.certpath.disabledAlgorithms=MD2
to
#jdk.certpath.disabledAlgorithms=MD2
Windows path to the config file: C:\Program Files (x86)\Java\jre7\lib\security
附:httputil中请求https需要加入以下代码
public static org.apache.http.client.HttpClient wrapClient(
org.apache.http.client.HttpClient base) {
try {
SSLContext ctx = SSLContext.getInstance("TLS");