Java 跳过证书方式调用https 接口

原创 已于 2025-10-28 15:48:26 修改 · 1.4k 阅读 · 0 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#java #https #开发语言

于 2021-01-28 08:35:56 首次发布
此博客展示了如何在Java中通过忽略证书验证来调用HTTPS接口。代码实例创建了一个不验证服务器证书的SSLContext,并使用它建立HTTPS连接。这主要用在开发环境中,因为生产环境中应始终重视安全,确保正确验证服务器证书。

 Java 跳过证书方式调用https 接口地址实例:

package com.xuxueli.executor.sample.jboot;

import java.io.BufferedReader;
import java.io.InputStreamReader;
import java.net.URL;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.HttpsURLConnection;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import com.xxl.job.core.log.XxlJobLogger;


/**
 * Jboot app
 */
public class JbootApp {
    public static void main(String[] args) {
         //JbootApplication.run(args);
    	try {
			JbootApp.execute("GET");
		} catch (Exception e) {
			// TODO Auto-generated catch block
			e.printStackTrace();
		}
    }
    
    //UUAP 接口地址
   	private static String url="https://XXXXX";
   	final static HostnameVerifier DO_NOT_VERIFY = new HostnameVerifier() {
   	 
		public boolean verify(String hostname, SSLSession session) {
			return true;
		}
	};

    
    public static void execute(String param) throws Exception {
		XxlJobLogger.log("组织数据同步开始----start-----");
        XxlJobLogger.log("传入参数值:"+param);
        
        HttpsURLConnection connection = null;
        BufferedReader bufferedReader = null;
        try {
        	
	    	 SSLContext sslContext = SSLContext.getInstance("SSL");
	    	 sslContext.init(null, trustAllCerts, new java.security.SecureRandom());
	    	 
	    	// 从上述SSLContext对象中得到SSLSocketFactory对象     
	         SSLSocketFactory ssf = sslContext.getSocketFactory(); 
	    	// 打开和URL之间的连接
	    	URL realUrl = new URL(url);
	    	connection = (HttpsURLConnection) realUrl.openConnection();
	    	connection.setSSLSocketFactory(ssf);
	    	
            connection.setDoOutput(true);
            connection.setDoInput(true);
            connection.setRequestMethod("GET");
            connection.setRequestProperty("accept", "*/*");
            connection.setRequestProperty("connection", "Keep-Alive");
            connection.setRequestProperty("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"); 
            connection.setRequestProperty("Content-Type", "application/json;charset=UTF-8");
            connection.setRequestProperty("Accept-Charset", "application/json;charset=UTF-8");
            connection.connect(); 
            
            // valid StatusCode
            int statusCode = connection.getResponseCode();
            XxlJobLogger.log("接口调用状态:"+statusCode);
            if (statusCode != 200) {
                throw new RuntimeException("Http Request StatusCode(" + statusCode + ") Invalid.");
            }

            // result
            bufferedReader = new BufferedReader(new InputStreamReader(connection.getInputStream(), "UTF-8"));
            StringBuilder result = new StringBuilder();
            String line;
            while ((line = bufferedReader.readLine()) != null) {
                result.append(line);
            }
            String responseMsg = result.toString();

            XxlJobLogger.log(responseMsg);
        } catch (Exception e) {
            XxlJobLogger.log(e);
        } finally {
            try {
                if (bufferedReader != null) {
                    bufferedReader.close();
                }
                if (connection != null) {
                    connection.disconnect();
                }
            } catch (Exception e2) {
                XxlJobLogger.log(e2);
            }
        }
        
	}
    
     // 创建SSLContext对象,并使用我们指定的信任管理器初始化     
	 public static TrustManager[] trustAllCerts = new TrustManager[]{new X509TrustManager() {
		    public java.security.cert.X509Certificate[] getAcceptedIssuers() {
		      return new java.security.cert.X509Certificate[]{};
		    }
		 
		    @Override
		    public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
		    }
		 
		    @Override
		    public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
		    }
	 }};

     
}

-----------------------------------下面使用HttpPost--------------------------

package com.common.helper;

import lombok.SneakyThrows;
import org.apache.http.client.config.RequestConfig;
import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.client.methods.HttpPost;
import org.apache.http.conn.ssl.NoopHostnameVerifier;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.entity.StringEntity;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.util.EntityUtils;
import javax.net.ssl.SSLContext;
import java.io.IOException;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import java.security.cert.X509Certificate;
import java.util.HashMap;

public class HttpHelper {
    public static final String METHOD_GET = "get";
    public static final String METHOD_POST = "post";
    private static final String EncodeType = "UTF-8";

    private static HashMap<String, String> GetBaseHeaders() {
        HashMap<String, String> baseHaders = new HashMap<String, String>();
        baseHaders.put("accept", "*/*");
        baseHaders.put("connection", "Keep-Alive");
        baseHaders.put("user-agent", "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)");
        baseHaders.put("Content-Type", "application/json;charset=UTF-8");
        return baseHaders;
    }

    @SneakyThrows
    public static String Invoke(String url, String method, Object parameter, HashMap<String, String> headers) {
        LogHelper.PrintInfo("HTTP Input URL:" + url);
        LogHelper.PrintInfo("HTTP Input method:" + method);
        LogHelper.PrintInfo("HTTP Input parameter:" + JsonHelper.ToString(parameter));
        LogHelper.PrintInfo("HTTP Input headers:" + JsonHelper.ToString(headers));
        CloseableHttpClient client = null;
        CloseableHttpResponse response = null;
        String resultStr = "";
        try {
            client = HttpClients.createDefault();
            RequestConfig requestConfig = RequestConfig.custom().setConnectTimeout(60000).setSocketTimeout(60000).setConnectionRequestTimeout(60000).build();
            if (HttpHelper.METHOD_POST.equals(method)) {
                HttpPost httpPost = new HttpPost(url);
                if (headers != null) {
                    headers.forEach((k, v) -> {
                        httpPost.setHeader(k, v);
                    });
                }
                if (GetBaseHeaders() != null) {
                    GetBaseHeaders().forEach((k, v) -> {
                        httpPost.setHeader(k, v);
                    });
                }

                if (parameter != null) {
                    StringEntity bodyEntity = new StringEntity(JsonHelper.ToString(parameter), "utf-8");
                    httpPost.setEntity(bodyEntity);
                }
                httpPost.setConfig(requestConfig);
                client = createSkipSSLClient();
                response = client.execute(httpPost);
            } else {
                HttpGet httpGet = new HttpGet(url);
                if (headers != null) {
                    headers.forEach((k, v) -> {
                        httpGet.setHeader(k, v);
                    });
                }
                if (GetBaseHeaders() != null) {
                    GetBaseHeaders().forEach((k, v) -> {
                        httpGet.setHeader(k, v);
                    });
                }
                httpGet.setConfig(requestConfig);

                response = client.execute(httpGet);
            }
            resultStr = EntityUtils.toString(response.getEntity());
            LogHelper.PrintInfo("HTTP Output:" + resultStr);
        } catch (IOException e) {
            resultStr = "error-" + e.getMessage();
            e.printStackTrace();
        } finally {
            if (response != null) {
                response.close();
            }
            if (client != null) {
                client.close();
            }
        }
        return resultStr;
    }

    /**
     * 创建跳过SSL验证的HttpClient实例
     */
    public static CloseableHttpClient createSkipSSLClient() throws Exception {
        // 创建信任所有证书的TrustManager
        TrustManager[] trustAllCerts = new TrustManager[]{
                new X509TrustManager() {
                    @Override
                    public void checkClientTrusted(X509Certificate[] chain, String authType) {
                        // 空实现,信任所有客户端证书
                    }

                    @Override
                    public void checkServerTrusted(X509Certificate[] chain, String authType) {
                        // 空实现,信任所有服务器证书
                    }

                    @Override
                    public X509Certificate[] getAcceptedIssuers() {
                        return new X509Certificate[]{};
                    }
                }
        };
        // 初始化SSLContext
        SSLContext sslContext = SSLContext.getInstance("TLS");
        sslContext.init(null, trustAllCerts, new java.security.SecureRandom());

        // 创建SSL连接工厂,不验证主机名
        SSLConnectionSocketFactory sslSocketFactory = new SSLConnectionSocketFactory(
                sslContext,
                NoopHostnameVerifier.INSTANCE
        );
        return HttpClients.custom()
                .setSSLSocketFactory(sslSocketFactory)
                .build();
    }
}

java实现https请求绕过证书检测
xiaobao5214的博客
01-23 1万+
import org.apache.http.HttpEntity; import org.apache.http.client.config.RequestConfig; import org.apache.http.client.methods.CloseableHttpResponse; import org.apache.http.client.methods.HttpPost; imp...
java实现读取证书访问https接口
07-11
java实现读取证书访问https接口java实现读取证书访问https接口
Java实现免证书访问Https请求
王绍桦
01-29 4865
创建证书管理器类 import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import javax.net.ssl.X509TrustManager; /** * 证书信任管理器(用于https请求) * */ public class MyX509Tr...
java证书调用https
flyer0428的博客
09-30 751
1.信任所有证书类 package com.asiainfo.frame.utils.https;   import java.security.cert.CertificateException; import java.security.cert.X509Certificate;   import javax.net.ssl.X509TrustManager;   publ...
Java跳过证书访问HTTPS
lmchhh的博客
09-15 6137
java直接发送请求访问https地址的时候,若没有导入证书,会出现各种问题,如307。以下会以是否SpringBoot来解决这个问题,做法一致,都是绕过证书进行处理的。
使用httpclient无需证书调用https的示例(java调用https)
09-04
总的来说,这个示例展示了如何在Java中使用HttpClient调用HTTPS服务,同时跳过SSL证书验证。然而,这样做存在安全风险,因为任何中间人攻击者都可以拦截并篡改通信。在生产环境中,你应该始终使用受信任的证书并启用...
Java如何跳过https的ssl证书验证详解
08-25
Java跳过HTTPS的SSL证书验证详解 本文主要介绍了Java跳过HTTPS的SSL证书验证的解决思路,并通过示例代码进行了详细的介绍,对大家的学习或者工作具有一定的参考学习价值。 一、HTTPS和HTTP的区别 HTTPS和HTTP的...
Java Https请求,跳过证书,直接访问
12-12
下面是如何在Java中实现HTTPS请求并跳过证书验证: 1. 创建一个TrustManager,它总是信任所有证书进行任何验证: ```java TrustManager[] trustAllCerts = new TrustManager[] { new X509TrustManager() { ...
浅谈java调用Restful API接口方式
08-28
同时,需要注意到HTTPS的处理,使用证书认证和跳过认证两种方式,可以根据项目的需求选择合适的方式。 在本文中,我们还讨论了使用HttpClient时的证书认证和跳过认证问题,并提供了相关的代码示例。通过这些示例,...
http远程接口调用-httpClient+跳过SSL证书校验
08-04
本文将详细介绍如何使用Apache HttpClient库进行HTTP远程接口调用,并讲解如何在Java跳过SSL证书校验。 HttpClient是Apache提供的一款强大的HTTP客户端库,支持多种HTTP协议版本和功能,包括GET、POST请求、...
JavaHttpsURLConnection访问https协议的时候怎么跳过SSL证书的验证?
天青色等烟雨
05-12 2570
       请求https协议的时候,是需要进行SSL验证的。当然,如果这个请求是自己企业已知的或者是被企业已信任的,这个时候,咱们就会为了编程的方便,需要把请求路径的根证书以及中间证书导入到JKS中了,让程序在调用HTTP协议的时候对服务器的服务器名和证书名进行对比。说了那么多,应该怎么做呢 ? 很简单,直接将下面代码段放入到请求类中,即可自动跳过SSL验证。 static { try { .
Java 请求https接口需要安装证书
qq_34763482的博客
05-25 4059
Java 请求https接口需要安装证书,获取到信任的cilent
javaHTTPS请求绕过证书
酷狗蛋的博客
09-08 582
在项目中遇到java请求HTTPS,会报异常 javax.net.ssl.SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 在网上查了一堆资料,(忘记是哪位大佬的博客了)。然后写了一个类 public cl.
java请求https地址如何绕过证书验证?
爱老婆、爱生活、爱工作、爱编程
04-13 3413
第一种方法,适用于httpclient4.X 里边有get和post两种方法供你发送请求使用。 import java.io.BufferedReader; import java.io.IOException; import java.io.InputStream; import java.io.InputStreamReader; import java.io.Unsupport
java https 需要证书_java https post(证书的)
weixin_35781524的博客
02-23 476
import java.io.*;import java.net.*;import java.security.KeyManagementException;import java.security.NoSuchAlgorithmException;import java.security.cert.CertificateException;import java.security.cert.X5...
Java调用https接口get方法,无证书
许小珊的博客
09-12 3131
1.工具类 package springmvc.wx.controller.train; import java.security.KeyManagementException; import java.security.NoSuchAlgorithmException; import java.security.cert.CertificateException; import javax...
关于JAVA请求三方HTTPS接口报SSL问题解决方案,绕过SSL认证
weixin_47710682的博客
06-03 2599
项目中有调到三方https接口;本地测试没问题,部署到生产却报错误了,原因是缺少证书;要么加上证书,要么忽略证书;我采用的忽略证书方式,
java生成https证书以及设置SSL301跳转的方法
SSL加密技术
03-29 919
很多人想知道java生成https证书的操作方法,本文就来简单介绍一下,这里主要说的是java keytool生成证书,顺便介绍一下java设置SSL301跳转的方法。 一、java生成https证书的方法 1、检查电脑是否安装java,环境变量是否配置好 2、查看keytool命令帮助信息 3、通过keytool -genkeypair -help查看秘钥生成帮助信息 4、keytool -genkeypair -alias localhost -keyalg RSA -keypass loca
java Https post请求get请求 跳过验证
qq_38062838的博客
05-24 2316
java Https post请求get请求 跳过验证
java调用其他程序的接口时候如何跳过证书的认证
最新发布
11-07
Java中,通过HTTPURLConnection或HttpClient等库调用其他程序(通常是Web服务)时,如果遇到证书验证问题,你可以采取以下几种策略来跳过证书认证: 1. **忽略SSL证书验证**: 使用`HttpsURLConnection`时,可以...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值