package com.xj.util;
import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStreamReader;
import java.io.UnsupportedEncodingException;
import java.security.KeyManagementException;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import javax.net.ssl.SSLContext;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.apache.http.HttpEntity;
import org.apache.http.HttpResponse;
import org.apache.http.NameValuePair;
import org.apache.http.client.ClientProtocolException;
import org.apache.http.client.config.RequestConfig;
import org.apache.http.client.entity.UrlEncodedFormEntity;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.conn.ssl.SSLContextBuilder;
import org.apache.http.conn.ssl.TrustStrategy;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.message.BasicNameValuePair;
/**
* 实现Https请求 https=http+ssl安全加密通信
*
* @author pyi
*
*/
public class HttpClientUtil {
public static final int http_ok = 200;// 返回状态码正常
public static final int CONNECTION_TIMEOUT = 5000;// 连接超时
public static final int READDATA_TIMEOUT = 10000;// 数据读取等待超时
public static final int DEFAULT_HTTP_PORT = 80;// http端口
public static final int DEFAULT_HTTPS_PORT = 443;// https端口
private static Log log = LogFactory.getLog(HttpClientUtil.class);
/**
* 无需本地证书keyStore的SSL https带参数请求
*
* @param url
* @param paramsMap
* @param encoding
* @return
*/
public String postSSLUrlWithParams(String url, Map<String, String> reqMap, String encoding) {
log.info("httpsClient访问开始...");
CloseableHttpClient httpClient = HttpClientUtil.createSSLInsecureClient();
HttpPost post = new HttpPost(url);
// 添加参数
List<NameValuePair> params = new ArrayList<>();
if (reqMap != null && reqMap.keySet().size() > 0) {
Iterator<Map.Entry<String, String>> iter = reqMap.entrySet().iterator();
while (iter.hasNext()) {
Map.Entry<String, String> entity = iter.next();
params.add(new BasicNameValuePair(entity.getKey(), entity.getValue()));
}
}
StringBuilder sb = new StringBuilder();
BufferedReader br = null;
try {
// 设置客户端请求的头参数getParams已经过时,现在用requestConfig对象替换
// httpClient.getParams().setParameter(CoreConnectionPNames.CONNECTION_TIMEOUT,CONNECTION_TIMEOUT);
RequestConfig requestConfig = RequestConfig.custom().setConnectTimeout(CONNECTION_TIMEOUT)
.setSocketTimeout(READDATA_TIMEOUT).build();
post.setConfig(requestConfig);
// 设置编码格式
post.setEntity(new UrlEncodedFormEntity(params, encoding));
HttpResponse response = httpClient.execute(post);
HttpEntity httpEntity = response.getEntity();
br = new BufferedReader(new InputStreamReader(httpEntity.getContent(),encoding));
String s = null;
while((s=br.readLine())!=null){
sb.append(s);
}
} catch (UnsupportedEncodingException e) {
log.error("编码格式输入错误", e);
throw new RuntimeException("指定的编码集不对,您目前指定的编码集是:" + encoding);
} catch (ClientProtocolException e) {
e.printStackTrace();
} catch (IOException e) {
log.error("读取流文件异常", e);
throw new RuntimeException("读取流文件异常",e);
}catch (Exception e) {
log.error("通讯未知系统异常", e);
throw new RuntimeException("通讯未知系统异常",e);
}finally{
if(br != null){
try {
br.close();
} catch (IOException e) {
log.error("关闭br异常" + e);
e.printStackTrace();
}
}
}
return sb.toString();
}
/**
* 创建一个SSL信任所有证书的httpClient对象
*
* @return
*/
public static CloseableHttpClient createSSLInsecureClient() {
try {
SSLContext sslContext = new SSLContextBuilder().loadTrustMaterial(null, new TrustStrategy() {
// 默认信任所有证书
public boolean isTrusted(X509Certificate[] arg0, String arg1) throws CertificateException {
return true;
}
}).build();
// AllowAllHostnameVerifier: 这种方式不对主机名进行验证,验证功能被关闭,是个空操作(域名验证)
SSLConnectionSocketFactory sslcsf = new SSLConnectionSocketFactory(sslContext,
SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
return HttpClients.custom().setSSLSocketFactory(sslcsf).build();
} catch (KeyManagementException e) {
e.printStackTrace();
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (KeyStoreException e) {
e.printStackTrace();
}
return HttpClients.createDefault();
}
}
HttpClient4.3实现https请求信任所有证书
猜你喜欢
转载自blog.csdn.net/qq844579582/article/details/54314587
今日推荐
周排行