HttpURLConnection绕过HTTPS的SSL验证(信任所有证书)

最新推荐文章于 2024-04-25 11:06:11 发布

会飞的哈士奇

最新推荐文章于 2024-04-25 11:06:11 发布

阅读量6.9k

点赞数

分类专栏： java 文章标签： https ssl http

本文链接：https://blog.csdn.net/dongyan3595/article/details/123157770

版权

java 专栏收录该内容

58 篇文章 2 订阅

订阅专栏

import javax.net.ssl.*;


static {
    try {
        trustAllHttpsCertificates();
        HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
            public boolean verify(String urlHostName, SSLSession session) {
                return true;
            }
        });
    } catch (Exception e) {
    }
}

private static void trustAllHttpsCertificates() throws NoSuchAlgorithmException,     KeyManagementException {
    TrustManager[] trustAllCerts = new TrustManager[1];
    trustAllCerts[0] = new TrustAllManager();
    SSLContext sc = SSLContext.getInstance("SSL");
    sc.init(null, trustAllCerts, null);
    HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
}

private static class TrustAllManager implements X509TrustManager {
    
    public X509Certificate[] getAcceptedIssuers() {
        return null;
    }

    public void checkServerTrusted(X509Certificate[] certs, String authType) throws CertificateException {
    }

    public void checkClientTrusted(X509Certificate[] certs, String authType) throws CertificateException {
    }
}

跟其他公司做对接, 他们的SSL证书是自己本地创建的不受信任的证书, 用postman和网页调试都没有问题, 但是在java端用HttpURLConnectionq请求就报错误(javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException), 最后找到了设置网络请求信任所有证书的办法, 将上面代码放入项目中即可解决

会飞的哈士奇

关注

0
点赞
踩
4

收藏

觉得还不错? 一键收藏
0
评论
HttpURLConnection绕过HTTPS的SSL验证(信任所有证书)

import javax.net.ssl.*;static { try { trustAllHttpsCertificates(); HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() { public boolean verify(String urlHostName, SSLSession session) { re.
复制链接

扫一扫