axis2调用webservice https接口报:PKIX path building failed 解决方案

最新推荐文章于 2024-05-08 10:45:31 发布
最新推荐文章于 2024-05-08 10:45:31 发布
阅读量704 收藏 1
点赞数
文章标签: java 开发工具 python
原文链接:https://my.oschina.net/gordonnemo/blog/1595002
版权

2019独角兽企业重金招聘Python工程师标准>>> hot3.png

一套很老的axis2调用webservice的https接口报,如下错误:
分析:这是由于客户端证书校验失败的提示,那么如何避免证书的校验呢,这里我们采用了信任所有证书来避免校验,进而正常调用webservice的https接口。

org.apache.axis2.AxisFault: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
	at org.apache.axis2.AxisFault.makeFault(AxisFault.java:417)
	at org.apache.axis2.transport.http.SOAPMessageFormatter.writeTo(SOAPMessageFormatter.java:72)
	at org.apache.axis2.transport.http.AxisRequestEntity.writeRequest(AxisRequestEntity.java:84)
	at org.apache.commons.httpclient.methods.EntityEnclosingMethod.writeRequestBody(EntityEnclosingMethod.java:495)
	at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodBase.java:1973)
	at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.java:993)
	at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(HttpMethodDirector.java:397)
	at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMethodDirector.java:170)
	at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:396)
	at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.java:346)
	at org.apache.axis2.transport.http.AbstractHTTPSender.executeMethod(AbstractHTTPSender.java:520)
	at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPSender.java:191)
	at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77)
	at org.apache.axis2.transport.http.CommonsHTTPTransportSender.writeMessageWithCommons(CommonsHTTPTransportSender.java:327)
	at org.apache.axis2.transport.http.CommonsHTTPTransportSender.invoke(CommonsHTTPTransportSender.java:206)
	at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:396)
	at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:374)
	at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:211)
	at org.apache.axis2.client.OperationClient.execute(OperationClient.java:163)

 

解决方案:

public UMessageTransporterDAOImpl(UserToken user, String serviceUrl) throws UMessageTransportException {
		this.user = user;
		try {
			
			stub = new ExchangeTransportServiceStub(serviceUrl); 
			stub2 = new ExchangeTransportServiceStub2(serviceUrl); 
			
			//zjw 2017-12-16
			//********************免证书验证**********************//
			URL url = null;
			try {
				url = new URL(serviceUrl);
				if(url!=null){
					if(url.getProtocol().equalsIgnoreCase("https")){
						MySSLTrustManager.trustAllCertsBySSL(stub);
						MySSLTrustManager.trustAllCertsBySSL(stub2);
					}
				}
			} catch (MalformedURLException e) {
				// TODO Auto-generated catch block
				e.printStackTrace();
			}
			//**************************************************//
		} catch (AxisFault e) {
			throw new UMessageTransportException("Create client error.", e);
		}

	}
import java.io.IOException;  
import java.net.InetAddress;  
import java.net.InetSocketAddress;  
import java.net.Socket;  
import java.net.SocketAddress;  
import java.net.UnknownHostException;  
import java.security.KeyManagementException;  
import java.security.NoSuchAlgorithmException;  
import java.security.cert.CertificateException;  
import java.security.cert.X509Certificate;  
  
import javax.net.SocketFactory;  
import javax.net.ssl.SSLContext;  
import javax.net.ssl.TrustManager;  
import javax.net.ssl.X509TrustManager;  
  
import org.apache.commons.httpclient.ConnectTimeoutException;  
import org.apache.commons.httpclient.params.HttpConnectionParams;  
import org.apache.commons.httpclient.protocol.ProtocolSocketFactory;  
  
  
  
/** 
 * @author zhanggd
 * @describes 
 * @date 2017-12-16
 */  
public class MySSLProtocolSocketFactory implements ProtocolSocketFactory {  
  
  private SSLContext sslcontext = null;   
   
  private SSLContext createSSLContext() {   
      SSLContext sslcontext=null;   
      try {   
          sslcontext = SSLContext.getInstance("SSL");   
          sslcontext.init(null, new TrustManager[]{new TrustAnyTrustManager()}, new java.security.SecureRandom());   
      } catch (NoSuchAlgorithmException e) {   
          e.printStackTrace();   
      } catch (KeyManagementException e) {   
          e.printStackTrace();   
      }   
      return sslcontext;   
  }   
   
  private SSLContext getSSLContext() {   
      if (this.sslcontext == null) {   
          this.sslcontext = createSSLContext();   
      }   
      return this.sslcontext;   
  }   
   
  public Socket createSocket(Socket socket, String host, int port, boolean autoClose)   
          throws IOException, UnknownHostException {   
      return getSSLContext().getSocketFactory().createSocket(   
              socket,   
              host,   
              port,   
              autoClose   
          );   
  }   
  
  public Socket createSocket(String host, int port) throws IOException,   
          UnknownHostException {   
      return getSSLContext().getSocketFactory().createSocket(   
              host,   
              port   
          );   
  }   
   
   
  public Socket createSocket(String host, int port, InetAddress clientHost, int clientPort)   
          throws IOException, UnknownHostException {   
      return getSSLContext().getSocketFactory().createSocket(host, port, clientHost, clientPort);   
  }   
  
  public Socket createSocket(String host, int port, InetAddress localAddress,   
          int localPort, HttpConnectionParams params) throws IOException,   
          UnknownHostException, ConnectTimeoutException {   
      if (params == null) {   
          throw new IllegalArgumentException("Parameters may not be null");   
      }   
      int timeout = params.getConnectionTimeout();   
      SocketFactory socketfactory = getSSLContext().getSocketFactory();   
      if (timeout == 0) {   
          return socketfactory.createSocket(host, port, localAddress, localPort);   
      } else {   
          Socket socket = socketfactory.createSocket();   
          SocketAddress localaddr = new InetSocketAddress(localAddress, localPort);   
          SocketAddress remoteaddr = new InetSocketAddress(host, port);   
          socket.bind(localaddr);   
          socket.connect(remoteaddr, timeout);   
          return socket;   
      }   
  }   
   
  //自定义私有类   
  private static class TrustAnyTrustManager implements X509TrustManager {   
      
      public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {   
      }   
  
      public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {   
      }   
  
      public X509Certificate[] getAcceptedIssuers() {   
          return new X509Certificate[]{};   
      }   
  } 
  
  
} 
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;

import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;

import org.apache.axis2.transport.http.HTTPConstants;
import org.apache.commons.httpclient.protocol.Protocol;
import org.apache.commons.httpclient.protocol.ProtocolSocketFactory;

import com.wondersgroup.cuteinfo.client.exchangeserver.exchangetransport.stub.ExchangeTransportServiceStub;
import com.wondersgroup.cuteinfo.client.exchangeserver.exchangetransport.stub2.ExchangeTransportServiceStub2;
import com.wondersgroup.cuteinfo.client.exchangeserver.transport.stub.MessageTransportServiceStub;

public class MySSLTrustManager {

	/**
	 * @author zhanggd 
	 * @descibes https 免证书验证
	 * @date 2017-12-16
	 */
	public static void trustAllCertsBySSL(MessageTransportServiceStub stu) {
		TrustManager[] trustAllCerts = new TrustManager[1];  
	    TrustManager tm = new MyTM();  
	    trustAllCerts[0] = tm;  
	    SSLContext sslctx;
		try {
			sslctx = SSLContext.getInstance("SSL");
			sslctx.init(null, trustAllCerts, null);  
		} catch (NoSuchAlgorithmException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		} catch (KeyManagementException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}  
		stu._getServiceClient().getOptions().setProperty(HTTPConstants.CUSTOM_PROTOCOL_HANDLER,
			    new Protocol("https",(ProtocolSocketFactory)new MySSLProtocolSocketFactory(),443));
	}
	
	/**
	 * @author zhanggd 2017-12-16
	 * @descibers https 免证书验证
	 */
	public static void trustAllCertsBySSL(ExchangeTransportServiceStub stu) {
		TrustManager[] trustAllCerts = new TrustManager[1];  
		TrustManager tm = new MyTM();  
		trustAllCerts[0] = tm;  
		SSLContext sslctx;
		try {
			sslctx = SSLContext.getInstance("SSL");
			sslctx.init(null, trustAllCerts, null);  
		} catch (NoSuchAlgorithmException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		} catch (KeyManagementException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}  
		stu._getServiceClient().getOptions().setProperty(HTTPConstants.CUSTOM_PROTOCOL_HANDLER,
				new Protocol("https",(ProtocolSocketFactory)new MySSLProtocolSocketFactory(),443));
	}
	
	/**
	 * @author zhanggd 2017-12-16
	 * @descibers https 免证书验证
	 */
	public static void trustAllCertsBySSL(ExchangeTransportServiceStub2 stu) {
		TrustManager[] trustAllCerts = new TrustManager[1];  
		TrustManager tm = new MyTM();  
		trustAllCerts[0] = tm;  
		SSLContext sslctx;
		try {
			sslctx = SSLContext.getInstance("SSL");
			sslctx.init(null, trustAllCerts, null);  
		} catch (NoSuchAlgorithmException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		} catch (KeyManagementException e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}  
		stu._getServiceClient().getOptions().setProperty(HTTPConstants.CUSTOM_PROTOCOL_HANDLER,
				new Protocol("https",(ProtocolSocketFactory)new MySSLProtocolSocketFactory(),443));
	}
	
	static class MyTM implements TrustManager,X509TrustManager {  
	    public X509Certificate[] getAcceptedIssuers() {  
	        return null;  
	    }  
	  
	    public boolean isServerTrusted(X509Certificate[] certs) {  
	        return true;  
	    }  
	  
	    public boolean isClientTrusted(X509Certificate[] certs) {  
	        return true;  
	    }  
	  
	    public void checkServerTrusted(X509Certificate[] certs, String authType)  
	            throws CertificateException {  
	        return;  
	    }  
	  
	    public void checkClientTrusted(X509Certificate[] certs, String authType)  
	            throws CertificateException {  
	        return;  
	    }  
	}

}

 

转载于:https://my.oschina.net/gordonnemo/blog/1595002

weixin_33717298
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
Java Axis 直接调用webservice 接口工具类
09-24
Java Axis 直接调用webservice 接口工具类, 无需根据wsdl编译客户端,需要axis相关包,测试使用axis 1.4, 附demo引入axis包后直接可以测试;
sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath
振华OPPO的博客世界
11-30 1万+
由于JVM默认信任证书不包含该目标网站的SSL证书,导致无法建立有效的信任链接。所以我们将原先的google()和jcenter()仓库替换为国内的仓库。然后重新Sync项目,成功开始下载依赖。
最全解决 PKIX问题方案:sun.security.validator.ValidatorException: PKIX path building failed:
qq_43163943的博客
11-04 6万+
这个问题的根本原因是你安装JDK时,Java\jar 1.8.0_141\lib\ext\里面缺少了一个安全凭证jssecacerts证书文件,通过运行下面类可以生成证书,将生成的证书放在Java\jar 1.8.0_141\lib\ext\这个目录下,重启编译器就可以解决。 我只能说这个方法应该是解决大部分的问题吧,对于我电脑这种顽强的bug,需要通过两种方法的结合才可以从根本上解决这个问题,废话不多说,看我的解决步骤。 1、先检查你的jdk...
问题PKIX path building failed unable to find valid certification path to requested target分析
最新发布
gongjin28_csdn的博客
05-08 1007
解决这一问题的核心在于确保Java环境能够信任目标服务器的证书,要么通过确保证书链的有效性和完整性,要么通过手动将所需证书添加到Java的信任存储中。对于生产环境,强烈建议遵循最佳实践,使用权威CA签发的证书,并保持Java环境的安全更新。
java 调用axis2 ssl,axis2调用webservice https接口PKIX path building failed 解决方案
weixin_28997879的博客
03-11 723
一套很老的axis2调用webservicehttps接口,如下错误:分析:这是由于客户端证书校验失败的提示,那么如何避免证书的校验呢,这里我们采用了信任所有证书来避免校验,进而正常调用webservicehttps接口org.apache.axis2.AxisFault: sun.security.validator.ValidatorException: PKIX path build...
sun.security.validator.ValidatorException:PKIX path building failed 证书问题解决
weixin_40188817的博客
09-02 8455
前几天公司项目需要对接一个第三方系统的接口,直接用ip可以直接访问,但是对方改用https后会出现证书问题。 下面还有其他错,懒的截了,反正都是证书方面的问题。(下面的*****是公司域名,不方便展示) 解决方案: 1.拿到目标地址证书pem和key2个,放到源服务器/opt/***** 目录下 cd /opt/***** 2.进入JDK的security路径 ls /o...
解决 sun.security.validator.ValidatorException: PKIX path building failed:
走马川行雪的博客
12-27 6万+
错误信息: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provid...
axis2发布webservice调用axis2服务接口
12-24
1. **创建WebService**:在Axis2中,可以通过编写一个简单的Java类并暴露其方法作为Web服务接口。这个类通常会遵循SOAP协议,定义服务操作。例如,你可以创建一个名为`HelloWorldService`的类,包含一个`sayHello`...
axis2客户端调用webService接口,精简jar包
03-17
本文将深入探讨如何使用Axis2客户端调用WebService接口,并且会特别关注如何精简所需的jar包。 首先,了解Axis2客户端的基本概念是至关重要的。Axis2客户端是用于与远程Web服务交互的工具,它允许开发者通过SOAP...
axis调用webservice接口所需jar包.rar
05-13
axis调用第三方webservice接口所需的jar包,包括axis-1.4.jar,axis-jaxrpc-1.3.jar,axis-jaxrpc-1.4.jar,commons-discovery-0.5.jar,commons-logging-1.2.jar,cxf-rt-databinding-jaxb-3.3.1.jar,javax.mail-...
Axis2调用Webservice最全的Jar包
11-22
里面包含axis2-adb-codegen-1.5.4.jar、axis2-java2wsdl-1.5.4.jar、axis2-transport-local-1.5.4.jar、mail-1.4.jar、woden-impl-dom-1.0M8.jar、XmlSchema-1.4.3.jar等十几个jar包
解决 sun.security.validator.ValidatorException: PKIX path building failed 的问题,绕过证书的检查实现
chao_9836的博客
02-09 1万+
错误信息: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find...
java通过证书访问服务器,使用httpClient连接https时使用服务端证书(self-signed certificate)的方法...
weixin_34287049的博客
03-16 1091
外出旅行、冬季保暖得常备户外袜、速干袜、加厚袜子哦。猛戳乐途驿站http://zhoupa1188.taobao.com抢购品牌男女式加厚户外袜子,coolmax、全棉、保暖、吸汗、速干、登山、徒步袜子。满10包邮使用httpClient连接https时一般要在客户端引入证书。引入方法有三种:1、在jdk中导入证书;2、将证书路径设置到环境变量中:System.setProperty("javax...
https方式访问webservice笔记
rishengcsdn的专栏
08-31 2万+
有一个webservice只提供https访问接口 直接访问的的时候会错: org.apache.axis2.AxisFault: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderExce
sun.security.validator.ValidatorException: PKIX path building failed
热门推荐
Arya的博客
05-16 6万+
在执行webservice的过程中,出现如下异常: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable ...
axis2 RPCServiceClient访问https接口访问踩过的坑!!!java版本,证书生成,TLS版本问题........
wangwei775257173的博客
03-05 3702
前几天,项目需要调用第三放的httpsWebservice接口,说起来都是一把辛酸泪!!! 简单的说下实现以及踩过的坑!!!!!!!!!!!!!!!! 第一步:项目为maven项目,使用axis2需要导入相应jar包,下面是所需要的maven依赖: <dependency> <groupId>org.apache.axis2</groupId> <artifactId>axis2</artifactId>
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building
kakahu2015的博客
05-11 1117
java httpclient调用https站点 API错解决方法: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException
java axis2调用webservice接口
05-23
使用 Java Axis2 调用 WebService 接口可以通过以下步骤实现: 1. 下载并安装 Axis2。你可以从官方网站下载安装包,或者从 Maven 中央仓库获取依赖。 2. 创建一个 Java 项目,并将 Axis2 WebService 客户端库添加...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值