banner
Matt

Matt

Matt-xlog
telegram
github
首頁封存福利关于

【JAVA】【工具類】信任SSL證書

#Java#开发45
AI 翻譯
這篇文章透過AI由英文翻譯成繁體中文查看原文
AI 生成的摘要
這段程式碼是一個Java工具類,用於信任SSL證書並從指定的URL下載文件。它包含一個方法`downloadFileFromUrl`,該方法接受文件的URL和文件名,並將文件下載到指定的路徑。程式碼中還定義了`ignoreSsl`方法,用於忽略HTTPS請求的SSL證書檢查,並在連接之前調用。`trustAllHttpsCertificates`方法設置了信任所有HTTPS證書的上下文。最後,`miTM`類實現了`TrustManager`和`X509TrustManager`接口,並允許所有的伺服器和客戶端證書。
import java.io.ByteArrayOutputStream;
import java.io.File;
import java.io.FileOutputStream;
import java.io.InputStream;
import java.net.HttpURLConnection;
import java.net.URL;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
 
import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
 
/**
 * java信任SSL證書 工具類
 *
 */
public class SslUtil {
  //url下載方法
	public void downloadFileFromUrl(String fileUrl, String fileName) throws Exception {
		URL url = new URL(fileUrl);
		SslUtil.ignoreSsl();
		HttpURLConnection urlConnection = (HttpURLConnection) url.openConnection();
		urlConnection.setConnectTimeout(6000);
		urlConnection.setReadTimeout(6000);
		if (urlConnection.getResponseCode() != HttpURLConnection.HTTP_OK) {
			System.out.println("連接請求狀態:---------------"+urlConnection.getResponseCode());
			throw new RuntimeException("文件讀取失敗");
		}
		InputStream inputStream = urlConnection.getInputStream();
		byte[] buffer = new byte[1024];
		int len;
		ByteArrayOutputStream byteArrayOutputStream = new ByteArrayOutputStream();
		while ((len = inputStream.read(buffer)) != -1) {
			byteArrayOutputStream.write(buffer, 0, len);
		}
		byteArrayOutputStream.close();
		File file = new File("/deployments/" + fileName);
		FileOutputStream fileOutputStream = new FileOutputStream(file);
		fileOutputStream.write(byteArrayOutputStream.toByteArray());
		fileOutputStream.close();
		inputStream.close();
		System.out.println("下載成功:" + "/deployments/" + fileName);
	}
   /**
	 * 忽略HTTPS請求的SSL證書,必須在openConnection之前調用
	 * 
	 * @throws Exception
	 */
	public static void ignoreSsl() throws Exception {
		HostnameVerifier hv = new HostnameVerifier() {
			public boolean verify(String urlHostName, SSLSession session) {
				return true;
			}
		};
		trustAllHttpsCertificates();
		HttpsURLConnection.setDefaultHostnameVerifier(hv);
	}
   private static void trustAllHttpsCertificates() throws Exception {
		TrustManager[] trustAllCerts = new TrustManager[1];
		TrustManager tm = new miTM();
		trustAllCerts[0] = tm;
		SSLContext sc = SSLContext.getInstance("SSL");
		sc.init(null, trustAllCerts, null);
		HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
	}
   static class miTM implements TrustManager, X509TrustManager {
		public X509Certificate[] getAcceptedIssuers() {
			return null;
		}
 
		public boolean isServerTrusted(X509Certificate[] certs) {
			return true;
		}
 
		public boolean isClientTrusted(X509Certificate[] certs) {
			return true;
		}
 
		public void checkServerTrusted(X509Certificate[] certs, String authType) throws CertificateException {
			return;
		}
 
		public void checkClientTrusted(X509Certificate[] certs, String authType) throws CertificateException {
			return;
		}
	}
 
}
載入中......
此文章數據所有權由區塊鏈加密技術和智能合約保障僅歸創作者所有。