https访问-不需要导入证书的方式 -

小斌张

浏览: 87583 次
性别:
来自: 河北

最近访客更多访客>>

shijianxuan

Jcqin

cjhhoo

xfworld

博主相关

博客

微博

相册

留言

关于我

文章分类

社区版块

存档分类

https访问-不需要导入证书的方式

博客分类：

java

java、https、httpclient

httpclient 通过https访问网站的方式有两种，一种是需要导入证书，一种是不需要的。导入证书的安全性比较高，但是如果网站证书更新了，证书需要重新导入。下面的例子是不安全的：

package net.ben;

import org.apache.http.HttpEntity;
import org.apache.http.HttpResponse;
import org.apache.http.NameValuePair;
import org.apache.http.client.entity.UrlEncodedFormEntity;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.cookie.Cookie;
import org.apache.http.impl.client.DefaultHttpClient;
import org.apache.http.message.BasicNameValuePair;
import org.apache.http.protocol.HTTP;
import org.apache.http.util.EntityUtils;

import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import java.util.ArrayList;
import java.util.List;

public class HttpClientTest {
    public static void main(String[] args) throws Exception {
        DefaultHttpClient httpClient = new DefaultHttpClient();
        try {
            TrustManager easyTrustManager = new X509TrustManager() {

                public void checkClientTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws java.security.cert.CertificateException {
                    //To change body of implemented methods use File | Settings | File Templates.
                }

                public void checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws java.security.cert.CertificateException {
                    //To change body of implemented methods use File | Settings | File Templates.
                }

                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                    return new java.security.cert.X509Certificate[0]; //To change body of implemented methods use File | Settings | File Templates.
                }
            };

            SSLContext sslcontext = SSLContext.getInstance("TLS");
            sslcontext.init(null, new TrustManager[]{easyTrustManager}, null);
            SSLSocketFactory sf = new SSLSocketFactory(sslcontext);

            Scheme sch = new Scheme("https", 443, sf);

            httpClient.getConnectionManager().getSchemeRegistry().register(sch);

            HttpGet httpget = new HttpGet("https://www.xxx.com/");

            System.out.println("executing request" + httpget.getRequestLine());

            HttpResponse response = httpClient.execute(httpget);
            HttpEntity entity = response.getEntity();

            System.out.println("----------------------------------------");
            System.out.println(response.getStatusLine());
            if (entity != null) {
                System.out.println("Response content length: " + entity.getContentLength());
            }
            String content = EntityUtils.toString(entity);
            System.out.println(content);

        } finally {
            httpClient.getConnectionManager().shutdown();
        }

    }

}

分享到：

tomcat配置http和https访问 | spring mvc整合freemarker基于注解方式

2012-09-14 14:12
浏览 1587
评论(0)
分类:非技术
查看更多

发表评论

您还没有登录,请您登录后再发表评论

最近访客更多访客>>

博主相关

文章分类

社区版块

存档分类

最新评论

https访问-不需要导入证书的方式

评论

发表评论

相关推荐

最近访客 更多访客>>

博主相关

文章分类

社区版块

存档分类

最新评论

https访问-不需要导入证书的方式

评论

发表评论

相关推荐

cas-server 4.0.0 maven 编译

日常服务异常解决问题

Java 正则表达式

ibatis like 防止sql注入

flex集成环境配置

myeclipse 10 破解遇到问题解决方案

centos memcached

java服务端http请求post 发送数据量限制

java 大数据次方运算

httpclient访问https

tomcat6中配置SSL双向认证

详解 Nginx + Tomcat HTTPS/SSL 配置

tomcat配置http和https访问

https访问设置

spring mvc整合freemarker基于注解方式

最近访客更多访客>>