### 回答1:
Spring Boot中使用
HttpClient调用第三方
HTTPS接口,并
忽略SSL证书验证,可以通过以下步骤来实现:
1. 导入
HttpClient和
SSL相关的依赖:
在pom.xml文件中添加以下依赖:
```xml
<dependency>
<groupId>org.apache.
httpcomponents</groupId>
<artifactId>
httpclient</artifactId>
<version>4.5.13</version>
</dependency>
<dependency>
<groupId>javax.net.
ssl</groupId>
<artifactId>javax.net.
ssl.
HttpsURLConnection</artifactId>
<version>1.0.0</version>
</dependency>
```
2. 创建
忽略SSL验证的
HttpClient对象:
```java
import org.apache.
http.cl
ient.
HttpClient;
import org.apache.
http.cl
ient.config.RequestConfig;
import org.apache.
http.conn.
ssl.NoopHostnameVerifier;
import org.apache.
http.conn.
ssl.
SSLConnectionSocketFactory;
import org.apache.
http.impl.cl
ient.
HttpClients;
import javax.net.
ssl.
SSLContext;
import javax.net.
ssl.TrustManager;
import javax.net.
ssl.X509TrustManager;
public class
HttpClientUtil {
public
HttpClient createIgnore
SSLHttpClient() throws Exception {
SSLContext
sslContext =
SSLContext.getInstance("TLS");
X509TrustManager trustManager = new X509TrustManager() {
public void checkCl
ientTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws java.security.cert.CertificateException {
}
public void checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws java.security.cert.CertificateException {
}
public java.security.cert.X509Certificate[] getAcceptedIssuers() {
return new java.security.cert.X509Certificate[0];
}
};
sslContext.init(null, new TrustManager[]{trustManager}, null);
SSLConnectionSocketFactory
sslConnectionSocketFactory = new
SSLConnectionSocketFactory(
sslContext, NoopHostnameVerifier.INSTANCE);
RequestConfig reqConfig = RequestConfig.custom().setSocketTimeout(120 * 1000).setConnectTimeout(120 * 1000).build();
HttpClient httpClient =
HttpClients.custom().set
SSLSocketFactory(
sslConnectionSocketFactory).setDefaultRequestConfig(reqConfig).build();
return
httpClient;
}
}
```
3. 使用创建的
HttpClient对象发送
HTTPS请求:
```java
import org.apache.
http.cl
ient.methods.
CloseableHttpResponse;
import org.apache.
http.cl
ient.methods.
HttpGet;
import org.apache.
http.impl.cl
ient.
CloseableHttpCl
ient;
import org.apache.
http.util.EntityUtils;
public class
HttpsCl
ientExample {
public static void main(String[] args) throws Exception {
HttpClientUtil
httpClientUtil = new
HttpClientUtil();
CloseableHttpCl
ient httpClient = (
CloseableHttpCl
ient)
httpClientUtil.createIgnore
SSLHttpClient();
HttpGet
httpGet = new
HttpGet("
https://example.com/api");
CloseableHttpResponse response =
httpClient.execute(
httpGet);
String responseBody = EntityUtils.toString(response.getEntity(), "UTF-8");
System.out.println(responseBody);
response.close();
httpClient.close();
}
}
```
以上就是使用Spring Boot中的
HttpClient实现
忽略SSL证书的步骤。总结起来,主要包括导入相关依赖,创建
忽略SSL验证的
HttpClient对象,以及使用该对象发送
HTTPS请求。
### 回答2:
Spring Boot中使用
HttpClient调用第三方
HTTPS接口
时,如果
忽略SSL证书验证,可以按照以下方法进行操作。
首先,需要在Spring Boot的配置文件application.properties中添加以下配置:
```plaintext
#
忽略SSL证书验证
spring.main.allow-bean-definition-overriding=true
```
然后,创建一个自定义的
HttpClientConfig类,用于配置并创建
HttpClient对象:
```java
import org.apache.
http.cl
ient.
HttpClient;
import org.apache.
http.cl
ient.config.RequestConfig;
import org.apache.
http.conn.
ssl.NoopHostnameVerifier;
import org.apache.
http.conn.
ssl.
SSLConnectionSocketFactory;
import org.apache.
http.impl.cl
ient.
HttpClients;
import org.apache.
http.
ssl.
SSLContextBuilder;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import javax.net.
ssl.
SSLContext;
@Configuration
public class
HttpClientConfig {
@Value("${
httpclient.
ssl.ignore-
ssl}")
private boolean ignore
SSL;
@Bean
@ConditionalOnProperty(name = "
httpclient.
ssl.ignore-
ssl", havingValue = "true")
public
HttpClient httpClient() throws Exception {
if (ignore
SSL) {
SSLContext
sslContext =
SSLContextBuilder.create()
.loadTrustMaterial((chain, authType) -> true)
.build();
SSLConnectionSocketFactory
sslConnectionSocketFactory = new
SSLConnectionSocketFactory(
sslContext, NoopHostnameVerifier.INSTANCE);
return
HttpClients.custom()
.set
SSLSocketFactory(
sslConnectionSocketFactory)
.setDefaultRequestConfig(requestConfig())
.build();
} else {
return
HttpClients.createDefault();
}
}
private RequestConfig requestConfig() {
return RequestConfig.custom()
.setConnectTimeout(5000)
.setSocketTimeout(5000)
.build();
}
}
```
最后,在需要调用第三方
HTTPS接口的地方注入
HttpClient对象,并使用该对象进行接口调用即可:
```java
import org.apache.
http.
HttpResponse;
import org.apache.
http.cl
ient.
HttpClient;
import org.apache.
http.cl
ient.methods.
HttpGet;
import org.apache.
http.util.EntityUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Service;
@Service
public class
HttpService {
@Autowired
private
HttpClient httpClient;
public String getResponse(String url) throws Exception {
HttpGet
httpGet = new
HttpGet(url);
HttpResponse
httpResponse =
httpClient.execute(
httpGet);
return EntityUtils.toString(
httpResponse.getEntity());
}
}
```
以上就是使用Spring Boot的
HttpClient调用第三方
HTTPS接口并
忽略SSL证书验证的方法。请注意,
忽略SSL证书验证可能存在安全风险,建议在生产环境中谨慎使用。
940
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
