iOS开发 - HTTPS请求详解

HTTPS

• HTTPS : Hyper Text Transfer Protocol over Secure Socket Layer,是以安全为目标的HTTP通道,简单讲是HTTP的安全版.即HTTP下加入SSL层,HTTPS的安全基础是SSL.
• SSL : Secure Sockets Layer,表示安全套接层.
• TLS : Transport Layer Security,是SSL的继任者,表示传输层安全.
• SSL与TLS是为网络通信提供安全及数据完整性的一种安全协议。TLS与SSL在传输层对网络连接进行加密.

HTTPS和HTTP区别

HTTPS访问图解

NSURLSession 实现 HTTPS 访问

#import "ViewController.h"

@interface ViewController () <NSURLSessionDataDelegate>

@property (nonatomic, strong) NSURLSession *session;

@end

@implementation ViewController

- (NSURLSession *)session {
    if (_session == nil) {
        NSURLSessionConfiguration *config = [NSURLSessionConfiguration defaultSessionConfiguration];
        _session = [NSURLSession sessionWithConfiguration:config delegate:self delegateQueue:nil];
    }
    return _session;
}

- (void)viewDidLoad {
    [super viewDidLoad];

}

- (void)viewWillDisappear:(BOOL)animated {
    [super viewWillDisappear:animated];
    [self.session finishTasksAndInvalidate];
}

- (void)touchesBegan:(NSSet<UITouch *> *)touches withEvent:(UIEvent *)event {
    [self HTTPSDemo];
}

- (void)HTTPSDemo {
    // URL
    NSURL *URL = [NSURL URLWithString:@"https://mail.itcast.cn"];
    // 自定义session发起任务 (因为我们要在代理方法里面挑战服务器)
    NSURLSessionDataTask *dataTask = [self.session dataTaskWithURL:URL completionHandler:^(NSData * _Nullable data, NSURLResponse * _Nullable response, NSError * _Nullable error) {
        // 处理响应
        if (error == nil && data != nil) {
            // 反序列化
            NSString *html = [[NSString alloc] initWithData:data encoding:NSUTF8StringEncoding];
            NSLog(@"%@",html);
        }else {
            NSLog(@"%@",error);
        }
    }];
    // 启动任务
    [dataTask resume];
}

#pragma NSURLSessionDataDelegate
- (void)URLSession:(NSURLSession *)session task:(NSURLSessionTask *)task
    didReceiveChallenge:(NSURLAuthenticationChallenge *)challenge
    completionHandler:(void (^)(NSURLSessionAuthChallengeDisposition disposition, NSURLCredential * __nullable credential))completionHandler {
    // 1.判断接收服务器挑战的方法是否是信任证书
    if ([challenge.protectionSpace.authenticationMethod isEqualToString:NSURLAuthenticationMethodServerTrust]) {
        // 2.如果你信任证书,就从受保护空间里面拿出证书,回调给服务器,告诉服务,我信任你,你给我发送数据吧.
        NSURLCredential *credential = [NSURLCredential credentialForTrust:challenge.protectionSpace.serverTrust];
        // 3.把证书回调出去
        completionHandler(NSURLSessionAuthChallengeUseCredential,credential);
    }
}

@end
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

AFNetworking之HTTPS请求

- (void)loadData {
    // 创建网络请求mansger
    AFHTTPSessionManager *manager = [AFHTTPSessionManager manager];

    // 使AFN支持HTTPS请求 : 2.5.4之前
    // manager.securityPolicy.allowInvalidCertificates = YES;

    // 使AFN支持HTTPS请求 : 2.6.1以后
    manager.securityPolicy.validatesDomainName = NO;

    // 修改AFN默认支持接收的文本类型
    manager.responseSerializer.acceptableContentTypes = [NSSet setWithObjects:@"application/json", @"text/json", @"text/javascript", @"text/html" ,nil];

    // 修改AFN默认处理数据的方式 : 设置成只返回原始的二进制数据,程序猿自己反序列化
    manager.responseSerializer = [AFHTTPResponseSerializer serializer];

    // 网络请求地址
    NSString *URLStr = @"https://mail.itcast.cn";

    [manager GET:URLStr parameters:nil progress:nil success:^(NSURLSessionDataTask * _Nonnull task, id  _Nullable responseObject) {

        // NSLog(@"%@ %@",[responseObject class],responseObject);

        // 反序列化
        NSString *html = [[NSString alloc] initWithData:responseObject encoding:NSUTF8StringEncoding];
        NSLog(@"%@",html);

    } failure:^(NSURLSessionDataTask * _Nullable task, NSError * _Nonnull error) {
        NSLog(@"出错 %@",error);
    }];
}