背景描述:org.apache.commons.httpclient.HttpClient请求https URL。因为请求接口的证书是自签名的不被信任,请求提示如下错误:
绕过SSL证书校验:
CertificateValidationIgnored.java
package com.*****.hlSSLzs;
import java.io.IOException;
import java.net.InetAddress;
import java.net.Socket;
import java.net.UnknownHostException;
import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import org.apache.commons.httpclient.ConnectTimeoutException;
import org.apache.commons.httpclient.HttpClientError;
import org.apache.commons.httpclient.params.HttpConnectionParams;
import org.apache.commons.httpclient.protocol.ControllerThreadSocketFactory;
import org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory;
public class CertificateValidationIgnored implements SecureProtocolSocketFactory {
private SSLContext sslContext = null;
/**
* Constructor for MySecureProtocolSocketFactory.
*/
public CertificateValidationIgnored() {
}
/**
* @return
*/
private static SSLContext createEasySSLContext() {
try {
SSLContext context = SSLContext.getInstance("SSL");
context.init(null, new TrustManager[] {new MyX509TrustManager()}, null);
return context;
} catch (Exception e) {
throw new HttpClientError(e.toString());
}
}
/**
* @return
*/
private SSLContext getSSLContext() {
if (this.sslContext == null) {
this.sslContext = createEasySSLContext();
}
return this.sslContext;
}
/*
* (non-Javadoc)
* @see
* org.apache.commons.httpclient.protocol.ProtocolSocketFactory#createSocket(java.lang.String,
* int, java.net.InetAddress, int)
*/
public Socket createSocket(String host, int port, InetAddress clientHost, int clientPort) throws IOException,
UnknownHostException {
return getSSLContext().getSocketFactory().createSocket(host, port, clientHost, clientPort);
}
/*
* (non-Javadoc)
* @see
* org.apache.commons.httpclient.protocol.ProtocolSocketFactory#createSocket(java.lang.String,
* int, java.net.InetAddress, int, org.apache.commons.httpclient.params.HttpConnectionParams)
*/
public Socket createSocket(final String host, final int port, final InetAddress localAddress, final int localPort,
final HttpConnectionParams params) throws IOException, UnknownHostException, ConnectTimeoutException {
if (params == null) {
throw new IllegalArgumentException("Parameters may not be null");
}
int timeout = params.getConnectionTimeout();
if (timeout == 0) {
return createSocket(host, port, localAddress, localPort);
} else {
return ControllerThreadSocketFactory.createSocket(this, host, port, localAddress, localPort, timeout);
}
}
/*
* (non-Javadoc)
* @see SecureProtocolSocketFactory#createSocket(java.lang.String,int)
*/
public Socket createSocket(String host, int port) throws IOException, UnknownHostException {
return getSSLContext().getSocketFactory().createSocket(host, port);
}
/*
* (non-Javadoc)
* @see SecureProtocolSocketFactory#createSocket(java.net.Socket,java.lang.String,int,boolean)
*/
public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException,
UnknownHostException {
return getSSLContext().getSocketFactory().createSocket(socket, host, port, autoClose);
}
}
MyX509TrustManager.java
package com.****.hlSSLzs;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import javax.net.ssl.X509TrustManager;
public class MyX509TrustManager implements X509TrustManager {
/*
* (non-Javadoc)
* @see javax.net.ssl.X509TrustManager#checkClientTrusted(java.security.cert.X509Certificate[],
* java.lang.String)
*/
public void checkClientTrusted(X509Certificate[] arg0, String arg1) throws CertificateException {
}
/*
* (non-Javadoc)
* @see javax.net.ssl.X509TrustManager#checkServerTrusted(java.security.cert.X509Certificate[],
* java.lang.String)
*/
public void checkServerTrusted(X509Certificate[] arg0, String arg1) throws CertificateException {
}
/*
* (non-Javadoc)
* @see javax.net.ssl.X509TrustManager#getAcceptedIssuers()
*/
public X509Certificate[] getAcceptedIssuers() {
return null;
}
}
使用上面两个类,创建HttpClient对象:
package com.***.pjYzm;
import org.apache.commons.httpclient.*;
import org.apache.commons.httpclient.methods.*;
import org.apache.commons.httpclient.params.HttpMethodParams;
import org.apache.commons.httpclient.protocol.Protocol;
import org.apache.commons.httpclient.protocol.ProtocolSocketFactory;
import org.apache.http.HttpResponse;
import org.apache.http.client.config.RequestConfig;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.entity.StringEntity;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.util.EntityUtils;
import org.apache.commons.httpclient.cookie.*;
import java.util.*;
import org.jsoup.*;
import org.jsoup.nodes.*;
import org.jsoup.select.*;
import com.***.hlSSLzs.CertificateValidationIgnored;
import net.sf.json.JSONObject;
import java.io.*;
import java.net.MalformedURLException;
import java.net.URL;
/**
*<p>Tile:LoginTest.java<p>
*<p>Description:获取cookie和验证码模拟登录教务系统<p>
* @author YXS<p>
* @data2018年6月3日
*/
public class postRequstDemo {
public static String getHTML() throws Exception {
String cookie1 = "";
String html = "null";
//构造httpclient实例并且忽略服务端SSL证书校验
ProtocolSocketFactory fcty = new CertificateValidationIgnored();
Protocol.registerProtocol("https", new Protocol("https", fcty, 443));
HttpClient httpClient=new HttpClient();
try {
//进行登录后的操作
/**税(费)种认定信息接口调用_cui_xyang*/
String urlszrd = "http://localhost:8080/service/sfzrd/getSfzrdxxList";
//模拟登录,按实际服务器端要求选用Post 或 Get请求方式
PostMethod postMethodszrd = new PostMethod(urlszrd);
//设置登录时需要的信息
JSONObject parameters = new JSONObject();
parameters.put("rdyxqq", "");
parameters.put("rdyxqz", "");
parameters.put("djxh", "1011*********747");
String toJson = parameters.toString();
RequestEntity se = new StringRequestEntity (toJson ,"application/json" ,"UTF-8");
postMethodszrd.setRequestEntity(se);
postMethodszrd.setRequestHeader("Content-Type","application/json");
//默认的重试策略
postMethodszrd.getParams().setParameter(HttpMethodParams.RETRY_HANDLER, new DefaultHttpMethodRetryHandler());
postMethodszrd.getParams().setParameter(HttpMethodParams.SO_TIMEOUT, 5000);//设置超时时间
try{
//设置HttpClient接收Cookie
httpClient.getParams().setCookiePolicy(CookiePolicy.BROWSER_COMPATIBILITY);
int statusCode = httpClient.executeMethod(postMethodszrd);
html = postMethodszrd.getResponseBodyAsString();
System.out.println(statusCode);
if(statusCode == 200){
System.out.println("税(费)种认定信息接口调用成功!");
System.out.println("税(费)种认定信息接口调用返回报文:"+html);
}
}catch(Exception e){
e.printStackTrace();
}
}catch(Exception e){
e.printStackTrace();
}
return html;
}
public static void main(String[] args) throws Exception {
postRequstDemo.getHTML();
}
}