本文深入探讨了Android开发中HTTPS协议的交互过程,包括获取服务器证书、验证证书内容、握手协议及数据传输等关键步骤。
前言:
在android开发中,会涉及到安全比较高的业务,比如银行,网上交易等,这就涉及到https协议的交互
对于https 交互过程分两个阶段
1. 客户端获取服务器的证书,并验证证书的内容是否可信
2. 客户端和服务器端进行握手协议,并进行数据传输
对于https 交互过程,第一点,采用了网站可信的方式,如有需要验证域名和证书是否一致的,请自我扩展
实现的过程:
1): 注册scheme of https
注意:
HostnameVerifier hostnameVerifier = org.apache.http.conn.ssl.SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER;
如果需要验证,则,自己继承HostnameVerifier ,并实现接口。
2):获取 httpClient 和 httpPost
3):获取数据
下面是实现的源码,参数就是https路径:
public String GetData(String URL)
{
String returns="";
//Step One register scheme of https
HostnameVerifier hostnameVerifier = org.apache.http.conn.ssl.SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER;
SchemeRegistry registry = new SchemeRegistry();
SSLSocketFactory socketFactory = SSLSocketFactory.getSocketFactory();
socketFactory.setHostnameVerifier((X509HostnameVerifier) hostnameVerifier);
registry.register(new Scheme("https", socketFactory, 443));
registry.register(new Scheme("http",PlainSocketFactory.getSocketFactory (), 80));
//Step Two Get httpClient and httpPost
DefaultHttpClient client = new DefaultHttpClient();
SingleClientConnManager mgr = new SingleClientConnManager(client.getParams(), registry);
DefaultHttpClient httpClient = new DefaultHttpClient(mgr, client.getParams());
//------- Set verifier
HttpsURLConnection.setDefaultHostnameVerifier(hostnameVerifier);
// -------Example send http request
// final String url = "https://martinreichart.com/_tmpdata/login_valid.json";
HttpPost httpPost = new HttpPost(URL);
//Step Three Get Data
try {
HttpResponse response = httpClient.execute(httpPost);
if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
// 解析返回的内容
returns = EntityUtils.toString(response.getEntity());
}
}
catch(Exception ex)
{
String aa =ex.toString();
}
return returns;
}
在android开发中,会涉及到安全比较高的业务,比如银行,网上交易等,这就涉及到https协议的交互
对于https 交互过程分两个阶段
1. 客户端获取服务器的证书,并验证证书的内容是否可信
2. 客户端和服务器端进行握手协议,并进行数据传输
对于https 交互过程,第一点,采用了网站可信的方式,如有需要验证域名和证书是否一致的,请自我扩展
实现的过程:
1): 注册scheme of https
注意:
HostnameVerifier hostnameVerifier = org.apache.http.conn.ssl.SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER;
如果需要验证,则,自己继承HostnameVerifier ,并实现接口。
2):获取 httpClient 和 httpPost
3):获取数据
下面是实现的源码,参数就是https路径:
public String GetData(String URL)
{
String returns="";
//Step One register scheme of https
HostnameVerifier hostnameVerifier = org.apache.http.conn.ssl.SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER;
SchemeRegistry registry = new SchemeRegistry();
SSLSocketFactory socketFactory = SSLSocketFactory.getSocketFactory();
socketFactory.setHostnameVerifier((X509HostnameVerifier) hostnameVerifier);
registry.register(new Scheme("https", socketFactory, 443));
registry.register(new Scheme("http",PlainSocketFactory.getSocketFactory (), 80));
//Step Two Get httpClient and httpPost
DefaultHttpClient client = new DefaultHttpClient();
SingleClientConnManager mgr = new SingleClientConnManager(client.getParams(), registry);
DefaultHttpClient httpClient = new DefaultHttpClient(mgr, client.getParams());
//------- Set verifier
HttpsURLConnection.setDefaultHostnameVerifier(hostnameVerifier);
// -------Example send http request
// final String url = "https://martinreichart.com/_tmpdata/login_valid.json";
HttpPost httpPost = new HttpPost(URL);
//Step Three Get Data
try {
HttpResponse response = httpClient.execute(httpPost);
if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
// 解析返回的内容
returns = EntityUtils.toString(response.getEntity());
}
}
catch(Exception ex)
{
String aa =ex.toString();
}
return returns;
}
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
