javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException:No subject alternative

赵同学来了

已于 2022-10-28 11:17:28 修改

阅读量2.4k

点赞数

分类专栏： Java开发文章标签： ssl java .net

于 2022-10-28 11:16:03 首次发布

本文链接：https://blog.csdn.net/weixin_53273474/article/details/127567933

版权

Java开发专栏收录该内容

18 篇文章 0 订阅

订阅专栏

背景：开发时需要根据rest api访问第三方接口数据，本地访问http://localhost可以正确访问，当访问服务器，项目路径变成了https://xx.xx.xx,出现javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative names present问题。

于是做出以下解决方案：代码层跳出SSL证书认证

先在访问url的java类里增加以下代码：

//配置认证管理器
HttpsURLConnection.setDefaultHostnameVerifier(new Restful().new NullHostNameVerifier());
            SSLContext sc = SSLContext.getInstance("TLS");
            sc.init(null, trustAllCerts, new SecureRandom());
            HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());

增加绕过证书认证的代码：

static TrustManager[] trustAllCerts = new TrustManager[] { new X509TrustManager() {
    @Override
    public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
        // TODO Auto-generated method stub
    }

    @Override
    public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
        // TODO Auto-generated method stub
    }

    @Override
    public X509Certificate[] getAcceptedIssuers() {
        // TODO Auto-generated method stub
        return null;
    }
} };
//激活主机认证
public class NullHostNameVerifier implements HostnameVerifier {
    /*
     * (non-Javadoc)
     *
     * @see javax.net.ssl.HostnameVerifier#verify(java.lang.String,
     * javax.net.ssl.SSLSession)
     */
    @Override
    public boolean verify(String arg0, SSLSession arg1) {
        // TODO Auto-generated method stub
        return true;
    }
}