devbox
小小林熬夜学编程
这个屌丝很懒,什么也没留下!
关注作者
热门标签
热门文章
当前位置:   article > 正文

http忽略ssl认证

作者:小小林熬夜学编程 | 2024-04-26 08:01:24

http忽略ssl认证

我们在发请求时,会遇到需要ssl证书验证的报错,针对该错误以及所使用的不同的创建连接的方式,进行ssl证书忽略

忽略SSL证书的流程

简介:需要告诉client使用一个不同的TrustManager。TrustManager是一个检查给定的证书是否有效的类。SSL使用的模式是X.509,对于该模式Java有一个特定的TrustManager,称为X509TrustManager。首先我们需要创建这样的TrustManager。将TrustManager设置到我们的HttpClient。TrustManager只是被SSL的Socket所使用。Socket通过SocketFactory创建。对于SSL Socket,有一个SSLSocketFactory。当创建新的SSLSocketFactory时,你需要传入SSLContext到它的构造方法中。在SSLContext中,我们将包含我们新创建的TrustManager。

  1. 创建的TrustManager
  2. 创建SSLContext:TLS是SSL的继承者,但是它们使用相同的SSLContext。
  3. 创建SSLSocketFactory
  4. 将SSLSocketFactory注册到我们的HttpClient上。这是在SchemeRegistry中完成的。
  5. 创建ClientConnectionManager,创建SchemeRegistry。
  6. 生成HttpClient

http忽略ssl认证

忽略https认证,就是自己构建一个x509认证,默认通过,再传到ssl配置工厂中

1. httpClient忽略ssl证书连接

client发起请求时,使用已经构建过认证client发起请求

  1. package com.neo.address.parse;
  2.  
  3. /**
  4.  * @author caoying
  5.  * @since 2024/4/14
  6.  */
  7.  
  8. import org.apache.http.HttpEntity;
  9. import org.apache.http.client.methods.HttpGet;
  10. import org.apache.http.conn.ssl.NoopHostnameVerifier;
  11. import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
  12. import org.apache.http.conn.ssl.TrustSelfSignedStrategy;
  13. import org.apache.http.conn.ssl.TrustStrategy;
  14. import org.apache.http.impl.client.CloseableHttpClient;
  15. import org.apache.http.impl.client.HttpClients;
  16. import org.apache.http.ssl.SSLContexts;
  17. import org.apache.http.util.EntityUtils;
  18. import org.jsoup.Jsoup;
  19. import org.jsoup.nodes.Document;
  20. import org.jsoup.nodes.Element;
  21. import org.jsoup.select.Elements;
  22.  
  23. import javax.net.ssl.SSLContext;
  24. import java.io.IOException;
  25. import java.security.KeyManagementException;
  26. import java.security.KeyStoreException;
  27. import java.security.NoSuchAlgorithmException;
  28. import java.security.cert.CertificateException;
  29. import java.security.cert.X509Certificate;
  30. import java.util.ArrayList;
  31. import java.util.List;
  32.  
  33. public class WebTool2 {
  34.     public static void main(String[] args) {
  35.         //
  36.         String url = "https://www.stats.gov.cn/sj/tjbz/tjyqhdmhcxhfdm/2023/";
  37.         try {
  38.             String html = fetchPageContent(url);
  39.             List<String> provinces = extractDataByTag(html, "tr", "provincetr");
  40.             List<String> cities = extractDataByTag(html, "tr", "citytr");
  41.             List<String> counties = extractDataByTag(html, "tr", "countytr");
  42.             List<String> towns = extractDataByTag(html, "tr", "towntr");
  43.  
  44.             // 输出提取的数据
  45.             System.out.println("Provinces: " + provinces);
  46.             System.out.println("Cities: " + cities);
  47.             System.out.println("Counties: " + counties);
  48.             System.out.println("Towns: " + towns);
  49.         } catch (IOException e) {
  50.             e.printStackTrace();
  51.         } catch (Exception e) {
  52.             throw new RuntimeException(e);
  53.         }
  54.     }
  55.  
  56.     private static String fetchPageContent(String url) throws IOException {
  57.  
  58. //        CloseableHttpClient httpClient = HttpClients.createDefault();
  59.  
  60.         HttpGet request = new HttpGet(url);
  61.  
  62.         try {
  63.                 //忽略https的ssl认证
  64.             //发起请求 , 调用trustAll()方法返回的client
  65.             HttpEntity entity = trustAll().execute(request).getEntity();
  66.             return EntityUtils.toString(entity, "UTF-8");
  67.         } catch (Exception e) {
  68.             throw new RuntimeException(e);
  69.         } finally {
  70. //            httpClient.close();
  71.         }
  72.     }
  73.  
  74.     private static List<String> extractDataByTag(String html, String tagName, String className) {
  75.         List<String> dataList = new ArrayList<>();
  76.         Document doc = Jsoup.parse(html);
  77.         Elements elements = doc.select(String.format(".%s", className));
  78.         for (Element element : elements) {
  79.             String data = element.select(tagName).text();
  80.             dataList.add(data);
  81.         }
  82.         return dataList;
  83.     }
  84.  
  85.     public static CloseableHttpClient trustAll(){
  86.         //配置,发送https请求时,忽略ssl证书认证(否则会报错没有证书)
  87.         SSLContext sslContext = null;
  88.         try {
  89.             sslContext = SSLContexts.custom().loadTrustMaterial(null, new TrustStrategy() {
  90.                 @Override
  91.                 public boolean isTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {
  92.                     return true;
  93.                 }
  94.             }).build();
  95.         } catch (NoSuchAlgorithmException e) {
  96.             e.printStackTrace();
  97.         } catch (KeyManagementException e) {
  98.             e.printStackTrace();
  99.         } catch (KeyStoreException e) {
  100.             e.printStackTrace();
  101.         }
  102.  
  103. //创建httpClient
  104.         CloseableHttpClient client = HttpClients.custom().setSSLContext(sslContext).setSSLHostnameVerifier(new NoopHostnameVerifier()).build();
  105.  
  106.         return client;
  107.     }
  108. }
  109.

2. urlconnection忽略ssl证书连接

忽略HTTPS请求的SSL证书,必须在openConnection之前调用

  1. package com.neo.address.parse;
  2.  
  3. import java.security.cert.CertificateException;
  4. import java.security.cert.X509Certificate;
  5. import javax.net.ssl.HttpsURLConnection;
  6. import javax.net.ssl.SSLContext;
  7. import javax.net.ssl.TrustManager;
  8. import javax.net.ssl.X509TrustManager;
  9.  
  10. /**
  11.  * Description: httpclient跳过https验证
  12.  */
  13.  
  14. import java.io.OutputStreamWriter;
  15. import java.net.URL;
  16. import java.net.URLConnection;
  17.  
  18. import javax.net.ssl.HostnameVerifier;
  19. import javax.net.ssl.SSLSession;
  20.  
  21. import org.apache.commons.io.IOUtils;
  22.  
  23. /**
  24.  * created by liu on 2020/03/18 14:23
  25.  */
  26.  
  27. public class SslUtil {
  28.     private static void trustAllHttpsCertificates() throws Exception {
  29.         TrustManager[] trustAllCerts = new TrustManager[1];
  30.         TrustManager tm = new miTM();
  31.         trustAllCerts[0] = tm;
  32.         SSLContext sc = SSLContext.getInstance("SSL");
  33.         sc.init(null, trustAllCerts, null);
  34.         HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
  35.     }
  36.  
  37.     static class miTM implements TrustManager, X509TrustManager {
  38.         public X509Certificate[] getAcceptedIssuers() {
  39.             return null;
  40.         }
  41.  
  42.         public boolean isServerTrusted(X509Certificate[] certs) {
  43.             return true;
  44.         }
  45.  
  46.         public boolean isClientTrusted(X509Certificate[] certs) {
  47.             return true;
  48.         }
  49.  
  50.         public void checkServerTrusted(X509Certificate[] certs, String authType)
  51.                 throws CertificateException {
  52.             return;
  53.         }
  54.  
  55.         public void checkClientTrusted(X509Certificate[] certs, String authType)
  56.                 throws CertificateException {
  57.             return;
  58.         }
  59.     }
  60.  
  61.     /**
  62.      * 忽略HTTPS请求的SSL证书,必须在openConnection之前调用
  63.      *
  64.      * @throws Exception
  65.      */
  66.     public static void ignoreSsl() throws Exception {
  67.         HostnameVerifier hv = new HostnameVerifier() {
  68.             public boolean verify(String urlHostName, SSLSession session) {
  69.                 System.out.println("Warning: URL Host: " + urlHostName
  70.                         + " vs. " + session.getPeerHost());
  71.                 return true;
  72.             }
  73.         };
  74.         trustAllHttpsCertificates();
  75.         HttpsURLConnection.setDefaultHostnameVerifier(hv);
  76.     }
  77. }

 

声明:本文内容由网友自发贡献,不代表【wpsshop博客】立场,版权归原作者所有,本站不承担相应法律责任。如您发现有侵权的内容,请联系我们。转载请注明出处:https://www.wpsshop.cn/w/小小林熬夜学编程/article/detail/489865
推荐阅读
相关标签

Copyright © 2003-2013 www.wpsshop.cn 版权所有,并保留所有权利。

  

闽ICP备14008679号