Android中如何将不安全的HttpClient传递给截取请求
我正在使用Android应用程序开发,我的应用程序包含用于进行API调用的凌空库,但我面临SSL的挑战:我在代码中使用的url存在自签名证书问题。但它正在通过传递“不安全的HttpClient”来改造库的另一个项目中工作,因此请让我知道如何修复此问题,或者如何将“不安全的HttpClient”传递给Volley以进行API调用。尝试将其添加到应用程序标记中的AndoidManifest.xml:-Android中如何将不安全的HttpClient传递给截取请求,android,retrofit,android-volley,retrofit2,httpclient,Android,Retrofit,Android Volley,Retrofit2,Httpclient,我正在使用Android应用程序开发,我的应用程序包含用于进行API调用的凌空库,但我面临SSL的挑战:我在代码中使用的url存在自签名证书问题。但它正在通过传递“不安全的HttpClient”来改造库的另一个项目中工作,因此请让我知道如何修复此问题,或者如何将“不安全的HttpClient”传递给Volley以进行API调用。尝试将其添加到应用程序标记中的AndoidManifest.xml:- <uses-library android:name="org.apach
<uses-library
android:name="org.apache.http.legacy"
android:required="false" />
我找到了,它对我有效,请告诉我这里有什么问题。下面是打电话需要添加的代码
final String url = "YOUR URL";
RequestQueue queue = Volley.newRequestQueue(this, getHttpStack(url));
// prepare the Request
JsonObjectRequest getRequest = new JsonObjectRequest(Request.Method.GET, url, null,
new Response.Listener<JSONObject>() {
@Override
public void onResponse(JSONObject response) {
// display response
Log.e("test", "Response" + response.toString());
}
},
new Response.ErrorListener() {
@Override
public void onErrorResponse(VolleyError error) {
Log.e("test", "Error.Response: " + error.getMessage());
}
}
);
queue.add(getRequest);
你好@Suresh。我假设你的应用程序工作正常,并且你在日志中得到警告。或者你的应用程序根本不工作?我的应用程序根本不工作,这是我得到的错误。javax.net.ssl.SSLHandshakeException:java.security.cert.CertPathValidatorException:找不到证书路径的信任锚点。
private HurlStack getHttpStack(String urlToValidate) {
URL url = null;
try {
url = new URL(urlToValidate);
} catch (MalformedURLException e) {
e.printStackTrace();
}
final String baseUrl = url.getAuthority();
return new HurlStack() {
@Override
protected HttpURLConnection createConnection(final java.net.URL url)
throws IOException {
HttpsURLConnection httpsURLConnection = (HttpsURLConnection) super
.createConnection(url);
try {
httpsURLConnection
.setSSLSocketFactory(handleSSLHandshake(httpsURLConnection));
httpsURLConnection.setHostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
//return true;
HostnameVerifier hv =
HttpsURLConnection.getDefaultHostnameVerifier();
return hv.verify(baseUrl, session);
}
});
} catch (Exception e) {
e.printStackTrace();
}
return httpsURLConnection;
}
};
}
@SuppressLint("TrulyRandom")
public static SSLSocketFactory handleSSLHandshake(HttpsURLConnection connection) {
try {
TrustManager[] trustAllCerts = new TrustManager[]{new X509TrustManager() {
public X509Certificate[] getAcceptedIssuers() {
return new X509Certificate[0];
}
@Override
public void checkClientTrusted(X509Certificate[] certs, String authType) {
}
@Override
public void checkServerTrusted(X509Certificate[] certs, String authType) {
}
}};
SSLContext sc = SSLContext.getInstance("SSL");
sc.init(null, trustAllCerts, new SecureRandom());
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String arg0, SSLSession arg1) {
Log.e("test", "RETURN TRUE: ");
return true;
}
});
sc.init(null, trustAllCerts, new java.security.SecureRandom());
SSLSocketFactory newFactory = sc.getSocketFactory();
connection.setSSLSocketFactory(newFactory);
} catch (Exception ignored) {
}
return connection.getSSLSocketFactory();
}