封装HttpsClientUtils 同时携带客户端证书 进行Https访问 双向认证

最新推荐文章于 2024-08-23 11:49:18 发布
最新推荐文章于 2024-08-23 11:49:18 发布
阅读量1.2k 收藏
点赞数
分类专栏: 基础~~Https
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/zhanaolu4821/article/details/89501046
版权

1:封装HttpClient 只支持Https 携带客户端证书

import org.springframework.stereotype.Component;
import java.io.UnsupportedEncodingException;
import java.net.URLEncoder;
import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.List;
import java.util.Map;
import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import org.apache.commons.lang.StringUtils;
import org.apache.http.HttpResponse;
import org.apache.http.NameValuePair;
import org.apache.http.client.HttpClient;
import org.apache.http.client.entity.UrlEncodedFormEntity;
import org.apache.http.client.methods.HttpDelete;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.client.methods.HttpPut;
import org.apache.http.conn.ClientConnectionManager;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.scheme.SchemeRegistry;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.entity.ByteArrayEntity;
import org.apache.http.entity.StringEntity;
import org.apache.http.impl.client.DefaultHttpClient;
import org.apache.http.message.BasicNameValuePair;
/**
 * author: 
 * date: 
 * time: 
 * description: HttpClient调用Https接口封装.
 */
@Component
public class HttpClientUtils {
    public static HttpResponse doGet(String host, String path, String method,
                                     Map<String, String> headers,
                                     Map<String, String> querys)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpGet request = new HttpGet(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        return httpClient.execute(request);
    }
 
    /**
     * post form
     *
     * @param host
     * @param path
     * @param method
     * @param headers
     * @param querys
     * @param bodys
     * @return
     * @throws Exception
     */
    public static HttpResponse doPost(String host, String path, String method,
                                      Map<String, String> headers,
                                      Map<String, String> querys,
                                      Map<String, String> bodys)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpPost request = new HttpPost(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        if (bodys != null) {
            List<NameValuePair> nameValuePairList = new ArrayList<NameValuePair>();
 
            for (String key : bodys.keySet()) {
                nameValuePairList.add(new BasicNameValuePair(key, bodys.get(key)));
            }
            UrlEncodedFormEntity formEntity = new UrlEncodedFormEntity(nameValuePairList, "utf-8");
            formEntity.setContentType("application/x-www-form-urlencoded; charset=UTF-8");
            request.setEntity(formEntity);
        }
 
        return httpClient.execute(request);
    }
 
    /**
     * Post String
     *
     * @param host
     * @param path
     * @param method
     * @param headers
     * @param querys
     * @param body
     * @return
     * @throws Exception
     */
    public static HttpResponse doPost(String host, String path, String method,
                                      Map<String, String> headers,
                                      Map<String, String> querys,
                                      String body)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpPost request = new HttpPost(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        if (StringUtils.isNotBlank(body)) {
            request.setEntity(new StringEntity(body, "utf-8"));
        }
 
        return httpClient.execute(request);
    }
 
    /**
     * Post stream
     *
     * @param host
     * @param path
     * @param method
     * @param headers
     * @param querys
     * @param body
     * @return
     * @throws Exception
     */
    public static HttpResponse doPost(String host, String path, String method,
                                      Map<String, String> headers,
                                      Map<String, String> querys,
                                      byte[] body)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpPost request = new HttpPost(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        if (body != null) {
            request.setEntity(new ByteArrayEntity(body));
        }
 
        return httpClient.execute(request);
    }
 
    /**
     * Put String
     *
     * @param host
     * @param path
     * @param method
     * @param headers
     * @param querys
     * @param body
     * @return
     * @throws Exception
     */
    public static HttpResponse doPut(String host, String path, String method,
                                     Map<String, String> headers,
                                     Map<String, String> querys,
                                     String body)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpPut request = new HttpPut(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        if (StringUtils.isNotBlank(body)) {
            request.setEntity(new StringEntity(body, "utf-8"));
        }
 
        return httpClient.execute(request);
    }
 
    /**
     * Put stream
     *
     * @param host
     * @param path
     * @param method
     * @param headers
     * @param querys
     * @param body
     * @return
     * @throws Exception
     */
    public static HttpResponse doPut(String host, String path, String method,
                                     Map<String, String> headers,
                                     Map<String, String> querys,
                                     byte[] body)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpPut request = new HttpPut(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        if (body != null) {
            request.setEntity(new ByteArrayEntity(body));
        }
 
        return httpClient.execute(request);
    }
 
    /**
     * Delete
     *
     * @param host
     * @param path
     * @param method
     * @param headers
     * @param querys
     * @return
     * @throws Exception
     */
    public static HttpResponse doDelete(String host, String path, String method,
                                        Map<String, String> headers,
                                        Map<String, String> querys)
            throws Exception {
        HttpClient httpClient = wrapClient(host);
 
        HttpDelete request = new HttpDelete(buildUrl(host, path, querys));
        for (Map.Entry<String, String> e : headers.entrySet()) {
            request.addHeader(e.getKey(), e.getValue());
        }
 
        return httpClient.execute(request);
    }
 
    private static String buildUrl(String host, String path, Map<String, String> querys) throws UnsupportedEncodingException {
        StringBuilder sbUrl = new StringBuilder();
        sbUrl.append(host);
        if (!StringUtils.isBlank(path)) {
            sbUrl.append(path);
        }
        if (null != querys) {
            StringBuilder sbQuery = new StringBuilder();
            for (Map.Entry<String, String> query : querys.entrySet()) {
                if (0 < sbQuery.length()) {
                    sbQuery.append("&");
                }
                if (StringUtils.isBlank(query.getKey()) && !StringUtils.isBlank(query.getValue())) {
                    sbQuery.append(query.getValue());
                }
                if (!StringUtils.isBlank(query.getKey())) {
                    sbQuery.append(query.getKey());
                    if (!StringUtils.isBlank(query.getValue())) {
                        sbQuery.append("=");
                        sbQuery.append(URLEncoder.encode(query.getValue(), "utf-8"));
                    }
                }
            }
            if (0 < sbQuery.length()) {
                sbUrl.append("?").append(sbQuery);
            }
        }
 
        return sbUrl.toString();
    }
 
    private static HttpClient wrapClient(String host) {
          KeyStore keyStore = KeyStore.getInstance(ClientCertificateParams.CERTIFICATE_TYPE.toString());


        SSLContext sslcontext;
        SSLConnectionSocketFactory sslsf;
        try (InputStream instream = new FileInputStream(ResourceUtils.getFile(path+ClientCertificateParams.CERTIFICATE_PATH.toString()))) {
            try {
                keyStore.load(instream, ClientCertificateParams.CERTIFICATE_PASSWORD.toString().toCharArray());
            } catch (CertificateException e) {
                e.printStackTrace();
            } catch (NoSuchAlgorithmException e) {
                e.printStackTrace();
            } catch (IOException e) {
                e.printStackTrace();
            } finally {
                instream.close();
            }
        } catch (FileNotFoundException e) {
            e.printStackTrace();
        } catch (IOException e) {
            e.printStackTrace();
        }
        sslcontext = SSLContexts.custom().loadKeyMaterial(keyStore, ClientCertificateParams.CERTIFICATE_PASSWORD.toString().toCharArray()).build();
        sslsf = new SSLConnectionSocketFactory(sslcontext
                , new String[]{"TLSv1"}    // supportedProtocols ,这里可以按需要设置
                , null    // supportedCipherSuites
                , SSLConnectionSocketFactory.getDefaultHostnameVerifier());

        CloseableHttpClient httpclient = HttpClients.custom().setSSLSocketFactory(sslsf).build();


        return httpclient;
    }
 

}

 2:对应的枚举类代码


public  enum ClientCertificateParams {
    CERTIFICATE_PATH("classpath:client1.p12"),
    CERTIFICATE_TYPE("PKCS12"),
    CERTIFICATE_PASSWORD("123456");

    private String describe;

    ClientCertificateParams(String describe) {
        this.describe = describe;
    }

    public String toString() {
        return describe;
    }
}
一尘在心
关注
专栏目录
java 通过Httpclient模拟https Post 请求,实现双向认证
vincentwistron的专栏
06-23 1万+
package com.sumy.https;import java.io.File; import java.io.FileInputStream; import java.io.IOException; import java.net.SocketTimeoutException; import java.security.KeyManagementException; import java.
浅谈基于openssl的多级证书,Multi-level CA的签发和管理,以及双向认证
m0_38084180的博客
04-21 4197
最近在研究openssl签发证书,在网上搜索关于openssl的用法、资料等等,总觉得非常分散,而且讲得比较浅,文章虽然不少,但是缺少真正能给你讲的明白得,仅停留在“能用”上,感慨一下,这怎么行,到底是大家也不明白还是秘而不宣呢? 前期建议简单了解下: tls的概念、单向认证双向认证过程和区别、数字证书、CA机构的角色、openssl 1、你是否需要多层证书? 这里面有两个核心的问题: a、你是否需要双向认证? 我见过的商业案例,客户公网访问某个服务,直接自己签发一个证书,放在服务端,客户ht
HttpsClientUtil
斩浪
09-20 1630
import org.apache.http.HttpHost; import org.apache.http.client.config.RequestConfig; import org.apache.http.client.methods.CloseableHttpResponse; import org.apache.http.client.methods.HttpPost; impor...
flutter 中 ssl 双向证书校验
最新发布
唐僧的专栏
08-23 562
flutter 中 ssl 双向证书校验
HttpsClientUtils
qq_22527379的博客
08-14 921
需要引用两个jar包: okhttp-3.6.0.jar okio-1.11.0.jar package com.utils; import java.security.KeyManagementException; import java.security.NoSuchAlgorithmException; import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import j
HttpClientUtil工具类封装
agg7911的博客
08-05 291
package com.jd.ng.shiro.utils; import org.apache.http.HttpEntity; import org.apache.http.HttpStatus; import org.apache.http.NameValuePair; import org.apache.http.client.config.RequestConfig; impo...
C# TLS SSL TCP双向认证 X509Store SslStream Certificate
09-25
C# TLS SSL TCP双向认证 X509Store SslStream Certificate Visual Studio 2017 命令提示 键入: makecert -r -pe -n “CN=TestServer” -ss Root -sky exchange 等待来自客户端的连接... 显示安全等级 密钥套件: Aes...
android 使用HttpsURLConnection方式的SSL双向认证
12-08
而在双向认证中,客户端也需要向服务器展示自己的证书,证明其合法性。这种方式常用于金融、医疗等对数据安全要求极高的场景。 在Android中,使用HttpsURLConnection进行SSL双向认证涉及以下步骤: 1. **创建信任...
https与SSL协议详解及Java实现免证书访问https服务代码
wonking666的博客
11-28 9083
https与SSL协议详解及Java实现免证书访问https服务代码 tomcat提供https服务接口方法
C# TCP/IP异步通信示例,带完整服务端与客户端,完全高度封装,下载即可使用
11-24
所有均为事件与封装完全分享。代码高度简洁。 服务端断线与重启,客户端自动重新连接。 客户端消息异常,快速响应事件。 客户端与服务端,调用DOME完全分离。 不管是学习TCP/IP通信,还是项目中使用TCP/IP均为首选
stp-utils:Java实用程序类的集合,可以将其合并到其他项目中,以方便处理某些基本任务
05-13
stp-utils Java实用程序类的集合,可以将它们合并到其他项目中,以方便处理某些基本任务。
httpclient访问需要客户端认证数字证书https接口的处理方法
03-25
NULL 博文链接:https://liudeh-009.iteye.com/blog/1181571
Utils-HttpsClientUtil
scdncby的博客
05-14 587
一、http封装工具类 忽略证书https请求 支持rest风格请求与传参 支持header请求头封装 支持Query与HttpEntity传参 maven依赖 <dependency> <groupId>org.apache.httpcomponents</groupId> <artifactId>httpmime</artifactId> <version>4.5.9</ver
Keytool生成双向https证书提供请求https的工具包
moyanxiaoq的博客
11-28 522
背景 前段时间分享了一个使用jdk自带的Keytool+tomcat项目http转单向https的文章,但是业务中很多需求还是要使用到双向https更加安全,今天分享一下具体操作步骤。 项目如果是IP方式访问用-ext SAN=ip:192.168.1.1,如果是域名用 -ext SAN=dns:www.abc.com,注意“您的名字与姓氏是什么?”就是你的IP或域名根据实际情况做必要的修改,其中需要注意的是:服务端的密钥库参CN必须与服务端的IP地址相同,否则会报错,客户端的任意。 证书生成 首先创建一
JAVA请求工具类之HttpClientUtil
netuser1937的博客
09-02 588
import org.apache.http.HttpEntity; import org.apache.http.client.ClientProtocolException; import org.apache.http.client.ResponseHandler; import org.apache.http.client.config.RequestConfig; import org.apache.http.client.methods.HttpGet; import org.apache.h.
[Java接口自动化框架系列04]httpclient4.5.3(CloseableHttpClient) https的工具类HttpsClientUtils
fen_fen的专栏
04-08 1560
httpclient4.5.3(CloseableHttpClient) https的工具类HttpsClientUtils
携带证书https请求工具类
YnagLei的博客
11-23 673
提示:文章写仅用于学习使用 文章目录前言整个PayUtil.java内容:总结 前言 提示:本内容主要描述HTTPS携带证书的请求工具类的 因为公司有需求要对接企业代付到微信余额的微信官方接口 接口中需要携带证书请求数据 也是再网上浏览了很久才,找了许多五花八门的工具类,才有了下面这个PayUtil进行携带证书请求 整个PayUtil.java内容: 代码如下(示例): package com.yang.util; import java.io.BufferedReader; import java
谈谈https证书
雨中深巷的油纸伞
03-28 3123
Transport Layer Security,同样是为了保证数据安全的加密协议层,是SSL的增强版,SSL有1.0,2.0,3.0版本,TLS目前1.0,1.1,1.2,1.3,TLS的1.0版本就是SSL的3.0。:相当于SSL的一个实现,如果把SSL规范看成OO中的接口,那么OpenSSL则认为是接口的实现,个人理解openssl是作为针对SSL/TLS的一个工具,包括对证书的解析,个人颁发,证书编码转化等。tls握手阶段,会根据随机值等协商一个对称加密的密钥,后面的通信都是使用这个密钥来加密。
chap双向认证封装ppp
07-14
如果您想要封装PPP的双向认证,您可以按照以下步骤进行操作: 1. 首先,确保您的系统已经安装了PPP(Point-to-Point Protocol)软件包。您可以在Linux系统中使用`pppd`命令进行配置。 2. 在服务器端和客户端之间...
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值