之前对接第三方要求提供https认证的证书,这边脑壳疼半天,经过我千辛万苦查找资料,终得正果,如下便是生成文件步骤:
- 首先找到nginx下面域名的config文件进入进去查看ssl_certificate 和 ssl_certificate_key 的文件位置
- openssl pkcs12 -export -clcerts -in (ssl_certificate后的文件名) -inkey (ssl_certificate_key后的文件名) -out client.p12
- 执行keytool -importkeystore -srckeystore client.p12 -srcstoretype PKCS12 -deststoretype JKS -destkeystore client.jks
- 得到的client.jks 便是keystore file
关于验证:
public static String coopQueryToken() {
SSLContext sslContext = null;
try {
//加载证书相关信息
sslContext = org.apache.http.ssl.SSLContexts.custom()
.loadTrustMaterial(new URL("文件地址"), "密码".toCharArray())
.build();
} catch (Exception e) {
e.printStackTrace();
}
SSLConnectionSocketFactory csf = new SSLConnectionSocketFactory(sslContext, NoopHostnameVerifier.INSTANCE);
CloseableHttpClient httpClient = HttpClients.custom().setSSLSocketFactory(csf).build();
HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory();
requestFactory.setHttpClient(httpClient);
RestTemplate restTemplate = new RestTemplate(requestFactory);
HttpHeaders headers = new HttpHeaders();
headers.set("Content-Type", "application/json; charset=utf-8");
String json = "请求参数";
String url = "请求地址";
HttpEntity<String> httpEntity = new HttpEntity<String>(json,headers);
System.out.println("请求地址" + url + "请求参数" + json);
ResponseEntity<String> request = restTemplate.postForEntity(url, httpEntity, String.class);
System.out.println("返回响应值" + request);
return null;
}
PS:https请求返回200便说明成功了。