集册 Java实例教程 使用自定义SSL上下文apache http客户端创建安全连接

使用自定义SSL上下文apache http客户端创建安全连接

欢马劈雪     最近更新时间:2020-01-02 10:19:05

605
使用自定义SSL上下文apache http客户端创建安全连接

/*

 * --------------------------------------------------------------------

 * Licensed to the Apache Software Foundation (ASF) under one

 * or more contributor license agreements.  See the NOTICE file

 * distributed with this work for additional information

 * regarding copyright ownership.  The ASF licenses this file

 * to you under the Apache License, Version 2.0 (the

 * "License"); you may not use this file except in compliance

 * with the License.  You may obtain a copy of the License at

 *

 *   http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing,

 * software distributed under the License is distributed on an

 * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY

 * KIND, either express or implied.  See the License for the

 * specific language governing permissions and limitations

 * under the License.

 * --------------------------------------------------------------------

 *

 * This software consists of voluntary contributions made by many

 * individuals on behalf of the Apache Software Foundation.  For more

 * information on the Apache Software Foundation, please see

 * <http://www.apache.org/>.

 *

 */

package org.apache.http.examples.client;


import java.io.File;
/*来自 
 nowjava - 时代Java*/


import javax.net.ssl.SSLContext;


import org.apache.http.HttpEntity;

import org.apache.http.client.methods.CloseableHttpResponse;

import org.apache.http.client.methods.HttpGet;

import org.apache.http.conn.ssl.SSLConnectionSocketFactory;

import org.apache.http.conn.ssl.TrustSelfSignedStrategy;

import org.apache.http.impl.client.CloseableHttpClient;

import org.apache.http.impl.client.HttpClients;

import org.apache.http.ssl.SSLContexts;/*N  o w  J a v a . c o m*/

import org.apache.http.util.EntityUtils;


/**

 * This example demonstrates how to create secure connections with a custom SSL

 * context.

 */

public class ClientCustomSSL {


    public final static void main(String[] args) throws Exception {

        // Trust own CA and all self-signed certs

        SSLContext sslcontext = SSLContexts

                .custom()

                .loadTrustMaterial(new File("my.keystore"),

                        "nopassword".toCharArray(),

                        new TrustSelfSignedStrategy()).build();

        // Allow TLSv1 protocol only

        SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(

                sslcontext, new String[] { "TLSv1" }, null,

                SSLConnectionSocketFactory.getDefaultHostnameVerifier());

        CloseableHttpClient httpclient = HttpClients.custom()

                .setSSLSocketFactory(sslsf).build();

        try {


            HttpGet httpget = new HttpGet("https://localhost/");


            System.out.println("executing request "
展开阅读全文