java使用HttpClient访问Https出现....

已于 2022-10-24 08:50:41 修改
阅读量1.4k 收藏 1
点赞数
分类专栏: spring 文章标签: 1024程序员节
于 2022-10-24 08:48:43 首次发布
本文链接:https://blog.csdn.net/weixin_45853881/article/details/127484872
版权

问题:

出现HttpClientssun.security.validator.ValidatorException: 错误
我的报错是:使用HttpClients出现sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed

意思大概就是由于网站安全证书已到期或者还未生效造成页面无法访问。

方法:

1.是导入网站的证书

不过如果问题来源是人家的证书到期了,就…,所以我直接没考虑,也不可能以后遇到错误就去网站下载证书,怪麻烦,还不如复制代码来的轻松

2.跳过网站安全(ssl)检查(意思差不多)

2.1)继承DefaultHttpClient(不过DefaultHttpClient已经被废弃了)

来由:由于HttpClientjar包的版本更新升级,从httpclient 4.2.5版本之后的jar包就不再支持 DefaultHttpClient

package com.lucun.wltour.ota.muniao.utils;

import java.security.cert.CertificateException;
import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import org.apache.http.conn.ClientConnectionManager;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.scheme.SchemeRegistry;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.impl.client.DefaultHttpClient;

public class SSLClient extends DefaultHttpClient {

    public SSLClient() throws Exception{
        super();
        SSLContext ctx = SSLContext.getInstance("TLS");
        ctx.init(null, getTrustingManager(), null);
        SSLSocketFactory ssf = new SSLSocketFactory(ctx,SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
        ClientConnectionManager ccm = this.getConnectionManager();
        SchemeRegistry sr = ccm.getSchemeRegistry();
        sr.register(new Scheme("https", 443, ssf));
    }

    private static TrustManager[] getTrustingManager() {
        TrustManager[] trustAllCerts = new TrustManager[] {
            new X509TrustManager() {
                @Override
                public void checkClientTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws CertificateException {}
                @Override
                public void checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws CertificateException {}
                @Override
                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                    return null;
                }
            }

        };
        return trustAllCerts;
    }
}

连接的操作

/**
     * @param url       访问网址
     * @param param     请求参数json格式
     * @param charset   编码一般为utf-8
     * @return
     */
    public String send1(String url, String param, String charset){
        HttpClient httpClient = null;
        HttpPost httpPost = null;
        String result = null;
        if (null == charset || "".equals(charset)){
            charset = "utf-8";
        }
        try{
            httpClient = new SSLClient();
            httpPost = new HttpPost(url);
            httpPost.setHeader("Content-Type", "application/json");
            StringEntity stringEntity = new StringEntity(param, "utf-8");
            httpPost.setEntity(stringEntity);
            HttpResponse response = httpClient.execute(httpPost);
            if(response != null){
                HttpEntity resEntity = response.getEntity();
                if(resEntity != null){
                    result = EntityUtils.toString(resEntity,charset);
                }
            }
        }catch(Exception e){
            e.printStackTrace();
        }
        return result;
    }

2.2) 实现X509TrustManager接口

import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import org.apache.http.impl.client.DefaultHttpClient;

public class SSLClient extends DefaultHttpClient {

    //绕过验证
    public static SSLContext createIgnoreVerifySSL() throws NoSuchAlgorithmException, KeyManagementException {
        SSLContext sc = SSLContext.getInstance("SSLv3");
        // 实现一个X509TrustManager接口,用于绕过验证,不用修改里面的方法
        X509TrustManager trustManager = new X509TrustManager() {
            @Override
            public void checkClientTrusted(
                java.security.cert.X509Certificate[] paramArrayOfX509Certificate,
                String paramString) throws CertificateException {
            }

            @Override
            public void checkServerTrusted(
                java.security.cert.X509Certificate[] paramArrayOfX509Certificate,
                String paramString) throws CertificateException {
            }

            @Override
            public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                return null;
            }
        };
        sc.init(null, new TrustManager[] { trustManager }, null);
        return sc;
    }
}

连接网站的操作

/**
     * @param url       访问网址
     * @param param     请求参数json格式
     * @param charset   编码一般为utf-8
     * @return
     */
    public String send1(String url, String param, String charset){
        HttpClient httpClient = null;
        HttpPost httpPost = null;
        String result = null;
        if (null == charset || "".equals(charset)){
            charset = "utf-8";
        }
        try{
            SSLContext sslcontext = SSLClient.createIgnoreVerifySSL();
            // 设置协议http和https对应的处理socket链接工厂的对象
            Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder.<ConnectionSocketFactory>create()
                .register("http", PlainConnectionSocketFactory.INSTANCE)
                .register("https", new SSLConnectionSocketFactory(sslcontext))
                .build();
            PoolingHttpClientConnectionManager connManager = new PoolingHttpClientConnectionManager(socketFactoryRegistry);
            httpClient = HttpClients.custom().setConnectionManager(connManager).build();

            httpPost = new HttpPost(url);
            httpPost.setHeader("Content-Type", "application/json");
            StringEntity stringEntity = new StringEntity(param, "utf-8");
            httpPost.setEntity(stringEntity);
            HttpResponse response = httpClient.execute(httpPost);
            if(response != null){
                HttpEntity resEntity = response.getEntity();
                if(resEntity != null){
                    result = EntityUtils.toString(resEntity,charset);
                }
            }
        }catch(Exception e){
            e.printStackTrace();
        }
        return result;
    }
明天我就退休
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
HTTP请求三方接口绕过https证书检查
java coder https://github.com/pmsyn/ https://gitee.com/pmsyn
05-08 305
http请求绕过https证书检查
PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed
热门推荐
icecoola_的博客
02-22 2万+
HTTP Status 500 - javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed ...
java 调用https请求_如何解决httpclient调用https请求报错
weixin_31162247的博客
02-13 1424
如果直接用HttpClient发送https请求的时候报错:sun.security.validator.ValidatorException:PKIXpathbuildingfailed:sun.security.provider.certpath.SunCertPathBuilderException:unabletofindvalidcertificationpathtorequestedt...
java访问https请求
zxc_user的博客
11-02 2793
转载自 http://rutine.blog.163.com/blog/static/790808722013115105143588/ 使用HttpClient 4.0访问https时遇到一个烦心的问题,网上查找的资料都没能解决我所遇到的问题。在此记录一下后来怎样解决的,这里有两点需要注意: 1. 包装HttpClient对象,以达到忽略证书验证的目的 2.
java.security.cert.CertPathValidatorException: timestamp check failed
mm_bit的博客
04-21 1万+
用maven编译Apache Ranger源码时,遇到错误如下: Plugin org.apache.maven.plugins:maven-remote-resources-plugin:1.5 or one of its dependencies could not be resolved: Failed to read artifact descriptor for org.apach
https 证书过期问题排查
LZN的博客
04-02 6698
一、问题描述 在服务协议由 http 迁移至 https 时,我发现线上环境报错 javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: timestamp check failed Caused by: java.security.cert.Certif
httpclient jar包11个.rar
05-22
java代码实现访问后台接口数据,传输的是json,为实现这一功能所用的jar包 一共有11个jar包 httpclient-4.5.12.jar httpcore-4.4.13.jar为较新的版本 commons-beanutils-1.7.0.jar commons-collections-3.1.jar ...
Java使用HttpClient和HtmlParser实现的爬虫Demo.zip
最新发布
03-08
如果您下载了本程序,但是该程序无法运行,或者您不会部署,那么您可以选择退款或者寻求我们的帮助(如果找我们帮助的...然而,使用爬虫需要遵守法律和伦理规范,尊重网站的使用政策,并确保对被访问网站的服务器负责。
Java网络爬虫小说下载器.zip
03-06
使用httpclient,jsoup,dom4j,json-lib,SWT创建的可下载小说的网络爬虫项目。 爬虫(Web Crawler)是一种自动化程序,用于从互联网上收集信息。其主要功能是访问网页、提取数据并存储,以便后续分析或展示。爬虫...
java使用HttpClient通过url下载文件到本地
08-17
Eclipse下完整的java程序,包含HttpClient的全部jar包。通过java类文件,实现通过链接将文件下载本地
HttpClientJava项目中的使用详解
09-03
HttpClient作为访问Http服务的客户端访问程序已经被广泛使用,提高了开发效率,也提高了代码的健壮性。因此熟练掌握HttpClient是必需的,关于httpclient感兴趣的朋友可以参考本
PKIX path validation failed: mestamp check failed 错误
老李的地下室
01-27 1万+
Caused by: java.lang.RuntimeException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: times
我是如何解决java.security.cert.CertPathValidatorException异常的
weixin_30306905的博客
03-02 1万+
目录 问题来了 问题分析 解决问题 重新安装服务器端证书 日志带来曙光 刨根到底 总结 附录 tomcat的SSL配置 服务器端证书配置 Keytool命令常...
Java程序访问https网站报错GitLabApiException: javax.net.ssl.SSLEx
fengzhishay的博客
08-26 1121
我的gitlab访问地址是https的,我在windows中启动java程序,访问gitlab时报错:GitLabApiException: javax.net.ssl.SSLException:the trustAnchors parameter must be non-empty。出现这个报错是因为https的网站做了加密处理,需要带有证书访问。...
Java(14):HttpClient4.5.3(CloseableHttpClient)访问https时跳过证书验证的解决方法
fen_fen的专栏
09-02 2515
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 使用的版本: <de...
【异常】客户端发起HTTPS请求报错,服务端返回400 Bad Request ,并且提示No required SSL certificate was sent
本本本添哥
04-22 1万+
HTTP响应码400表示客户端发送了一个无效的请求。这可能是由于请求中缺少必需的参数或格式不正确等原因导致的。服务器无法处理此请求并返回400响应码。如果您正在编写Web应用程序,建议在处理请求时检查请求的有效性,并在必要时返回400响应码以指示客户端请求无效。
PKIX path validation failed: java.security.cert.CertPathValidatorException: validity check failed
java技术专家全栈成长之路
01-25 6103
今天给项目打包出现这个异常,maven-deploy失败了,所有的客户机都是异常报错,百度说是时钟不一致导致的 [ERROR] Failed to execute goal org.apache.maven.plugins:maven-deploy-plugin:2.7:deploy (default-deploy) on project tbm-api: Failed to retrieve remote metadata com.threebody:tbm-api:1.0.0-SNAPSHOT/mav
httpclient访问https
07-27
HttpClient访问https站点时,需要注意证书的处理。有几种方法可以解决这个问题。方法一是将站点的证书导入到Java的证书库文件中。方法二是在HttpClient访问使用网站的证书进行访问。方法三是在HttpClient访问https站点时忽略认证。方法四是在HttpClient访问https站点时信任所有证书。如果JRE或者JDK没有导入某个站点的证书,那么在访问时会报错,错误信息可能是"javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target"。\[1\]\[2\]\[3\] #### 引用[.reference_title] - *1* *2* *3* [HttpClient 使用证书访问https站点](https://blog.csdn.net/oscar999/article/details/123016797)[target="_blank" data-report-click={"spm":"1018.2226.3001.9630","extra":{"utm_source":"vip_chatgpt_common_search_pc_result","utm_medium":"distribute.pc_search_result.none-task-cask-2~all~insert_cask~default-1-null.142^v91^control,239^v3^insert_chatgpt"}} ] [.reference_item] [ .reference_list ]

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值