本文主要是介绍android使用Okhttp中https证书配置,希望对大家解决编程问题提供一定的参考价值,需要的开发者们随着小编来一起学习吧!
如果是正常的http是不用配置安全证书的,如果是使用了https的话,是必须配置安全证书
项目使用了okhttp
通过对okhttp的builder添加证书校验
OkHttpClient.Builder builder
SSLContext sslContext = SSLContextUtil.getDefaultSLLContext();if (sslContext != null) {SSLSocketFactory socketFactory = sslContext.getSocketFactory();builder.sslSocketFactory(socketFactory);}builder.hostnameVerifier(SSLContextUtil.HOSTNAME_VERIFIER);
SSLContextUtil工具类
/** Copyright 2015 Yan Zhenjie** Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except* in compliance with the License. You may obtain a copy of the License at** http://www.apache.org/licenses/LICENSE-2.0** Unless required by applicable law or agreed to in writing, software distributed under the License* is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express* or implied. See the License for the specific language governing permissions and limitations under* the License.*/
package cn.droidlover.xdroidmvp.net;import java.security.SecureRandom;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;/*** https 证书工具** @author Yan Zhenjie.*/
public class SSLContextUtil {/*** 如果不需要https证书.(NoHttp已经修补了系统的SecureRandom的bug)。*/public static SSLContext getDefaultSLLContext() {SSLContext sslContext = null;try {sslContext = SSLContext.getInstance("TLS");sslContext.init(null, new TrustManager[] {trustManagers}, new SecureRandom());} catch (Exception e) {e.printStackTrace();}return sslContext;}/*** 信任管理器*/private static TrustManager trustManagers = new X509TrustManager() {@Overridepublic void checkClientTrusted(X509Certificate[] chain, String authType)throws CertificateException {}@Overridepublic void checkServerTrusted(X509Certificate[] chain, String authType)throws CertificateException {}@Overridepublic X509Certificate[] getAcceptedIssuers() {return new X509Certificate[0];}};/*** 域名验证*/public static final HostnameVerifier HOSTNAME_VERIFIER = new HostnameVerifier() {public boolean verify(String hostname, SSLSession session) {return true;}};
}
配置好这个方法就可以正常的访问了,但是这个还是不够的,我们还是要按照正规的方式走一遍流程
这篇关于android使用Okhttp中https证书配置的文章就介绍到这儿,希望我们推荐的文章对编程师们有所帮助!
