java http 双向认证_apache httpclient-4.5 https通讯双向认证

最新推荐文章于 2024-01-24 13:18:54 发布

向朝卿

最新推荐文章于 2024-01-24 13:18:54 发布

阅读量435

点赞数

文章标签： java http 双向认证

本文链接：https://blog.csdn.net/weixin_42117267/article/details/114521701

版权

maven dependence

org.apache.httpcomponents

httpclient

4.5.2

2. 测试类package com.iraid.test;

import java.io.BufferedReader;

import java.io.File;

import java.io.FileInputStream;

import java.io.IOException;

import java.io.InputStream;

import java.io.InputStreamReader;

import java.security.KeyStore;

import javax.net.ssl.SSLContext;

import org.apache.http.client.methods.CloseableHttpResponse;

import org.apache.http.client.methods.HttpPost;

import org.apache.http.config.Registry;

import org.apache.http.config.RegistryBuilder;

import org.apache.http.conn.HttpClientConnectionManager;

import org.apache.http.conn.socket.ConnectionSocketFactory;

import org.apache.http.conn.socket.PlainConnectionSocketFactory;

import org.apache.http.conn.ssl.SSLConnectionSocketFactory;

import org.apache.http.conn.ssl.SSLContexts;

import org.apache.http.conn.ssl.TrustSelfSignedStrategy;

import org.apache.http.entity.ContentType;

import org.apache.http.entity.StringEntity;

import org.apache.http.impl.client.CloseableHttpClient;

import org.apache.http.impl.client.HttpClients;

import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;

import org.apache.http.util.EntityUtils;

/**

* 使用 httpclient4.5 进行 https 通讯，

* 采用双向认证，连接池管理connection

* @author wangfeihu

public class HttpClientforSSL {

public static HttpClientConnectionManager CONNECTION_MANAGER = null;

/**

* 初始化 connection manager.

* @param keyStoreFile

* @param keyStorePass

* @param trustStoreFile

* @param trustStorePass

* @throws Exception

public void init(String keyStoreFile, String keyStorePass,

String trustStoreFile, String trustStorePass) throws Exception {

System.out.println("init conection pool...");

InputStream ksis = new FileInputStream(new File(keyStoreFile));

InputStream tsis = new FileInputStream(new File(trustStoreFile));

KeyStore ks = KeyStore.getInstance("PKCS12");

ks.load(ksis, keyStorePass.toCharArray());

KeyStore ts = KeyStore.getInstance("JKS");

ts.load(tsis, trustStorePass.toCharArray());

SSLContext sslContext = SSLContexts.custom()

.loadKeyMaterial(ks, keyStorePass.toCharArray())

// 如果有服务器证书

.loadTrustMaterial(ts, new TrustSelfSignedStrategy())

// 如果没有服务器证书，可以采用自定义信任机制

// .loadTrustMaterial(null, new TrustStrategy() {

// // 信任所有

// public boolean isTrusted(X509Certificate[] arg0,

// String arg1) throws CertificateException {

// return true;

// }

// })

.build();

SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(

sslContext, new String[] { "TLSv1" }, null,

SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);

Registry registry = RegistryBuilder

. create()

.register("http", PlainConnectionSocketFactory.INSTANCE)

.register("https", sslsf).build();

ksis.close();

tsis.close();

CONNECTION_MANAGER = new PoolingHttpClientConnectionManager(registry);

}

/**

* do post

* @param url

* @param params

* @throws Exception

public void post(String url, String params) throws Exception {

if (CONNECTION_MANAGER == null) {

return;

}

CloseableHttpClient httpClient = HttpClients.custom()

.setConnectionManager(CONNECTION_MANAGER).build();

HttpPost httpPost = new HttpPost(url);

httpPost.setEntity(new StringEntity(params,

ContentType.APPLICATION_JSON));

CloseableHttpResponse resp = httpClient.execute(httpPost);

System.out.println(resp.getStatusLine());

InputStream respIs = resp.getEntity().getContent();

String content = convertStreamToString(respIs);

System.out.println(content);

EntityUtils.consume(resp.getEntity());

}

public static String convertStreamToString(InputStream is) {

BufferedReader reader = new BufferedReader(new InputStreamReader(is));

StringBuilder sb = new StringBuilder();

String line = null;

try {

while ((line = reader.readLine()) != null) {

sb.append(line + "\n");

}

} catch (IOException e) {

e.printStackTrace();

} finally {

try {

is.close();

} catch (IOException e) {

e.printStackTrace();

}

return sb.toString();

}

public static void main(String[] args) {

// 服务地址

String url = "https://www.demo.com/api/rest/UidApiService/authCardWithoutOTP";

// 服务参数，这里接口的参数采用 json 格式传递

String params = "{\"merchantCode\": \"www.demo.com\","

+ "\"sessionId\": \"10000011\"," + "\"userName\": \"jack\","

+ "\"idNumber\": \"432652515\"," + "\"cardNo\": \"561231321\","

+ "\"phoneNo\": \"\"}";

// 私钥证书

String keyStoreFile = "D:\\workspaces\\test\\httpclient\\src\\main\\resources\\www.demo.com.p12";

String keyStorePass = "052537159932766";

// 配置信任证书库及密码

String trustStoreFile = "D:\\workspaces\\test\\httpclient\\src\\main\\resources\\cacerts.jks";

String trustStorePass = "changeit";

HttpClientforSSL obj = new HttpClientforSSL();

try {

obj.init(keyStoreFile, keyStorePass, trustStoreFile, trustStorePass);

for (int i = 0; i

obj.post(url, params);

}

} catch (Exception e) {

e.printStackTrace();

}

向朝卿

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
java http 双向认证_apache httpclient-4.5 https通讯双向认证

maven dependenceorg.apache.httpcomponentshttpclient4.5.22. 测试类packagecom.iraid.test;importjava.io.BufferedReader;importjava.io.File;importjava.io.FileInputStream;importjava.io.IOException;import...
复制链接

扫一扫

java http 双向认证_apache httpclient-4.5 https通讯 双向认证

java http 双向认证_apache httpclient-4.5 https通讯双向认证