httpClient设置忽略SSL（trust all）

最新推荐文章于 2025-03-10 13:54:38 发布

Ken-Jiang

最新推荐文章于 2025-03-10 13:54:38 发布

阅读量1.7k

点赞数

分类专栏： java 文章标签： ssl httpclient

java 专栏收录该内容

3 篇文章

订阅专栏

本文提供了一种使用Java的HttpClient库通过指定HTTPS代理服务器并绕过证书验证的方法。通过创建自定义的信任策略和主机名验证器，可以实现对不可信证书的完全信任，并展示了两种不同的实现方式。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

 
 
  
  第一个方法自测有效，其余方法摘自网上

  
  HttpHost proxy = new HttpHost("100.67.76.9",10003);
CloseableHttpClient httpClient = HttpClients.custom()
        .setProxy(proxy)
        .setHostnameVerifier(new AllowAllHostnameVerifier())
        .setSslcontext(new SSLContextBuilder().loadTrustMaterial(null, new TrustStrategy()
            {
                public boolean isTrusted(X509Certificate[] arg0, String arg1) throws CertificateException
                {
                    return true;
                }
            }).build()).build();
 
 

  
  
   
   或者

   
       SSLContextBuilder builder = new SSLContextBuilder();
    builder.loadTrustMaterial(null, new TrustSelfSignedStrategy());
    SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(
            builder.build());
    CloseableHttpClient httpclient = HttpClients.custom().setSSLSocketFactory(
            sslsf).build();

    HttpGet httpGet = new HttpGet("https://some-server");
    CloseableHttpResponse response = httpclient.execute(httpGet);
    try {
        System.out.println(response.getStatusLine());
        HttpEntity entity = response.getEntity();
        EntityUtils.consume(entity);
    }
    finally {
        response.close();
    }
  
  

   
   
    
    或者

    
    SSLContextBuilder builder = SSLContexts.custom();
builder.loadTrustMaterial(null, new TrustStrategy() {
    @Override
    public boolean isTrusted(X509Certificate[] chain, String authType)
            throws CertificateException {
        return true;
    }
});
SSLContext sslContext = builder.build();
SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(
        sslContext, new X509HostnameVerifier() {
            @Override
            public void verify(String host, SSLSocket ssl)
                    throws IOException {
            }

            @Override
            public void verify(String host, X509Certificate cert)
                    throws SSLException {
            }

            @Override
            public void verify(String host, String[] cns,
                    String[] subjectAlts) throws SSLException {
            }

            @Override
            public boolean verify(String s, SSLSession sslSession) {
                return true;
            }
        });

Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder
        .<ConnectionSocketFactory> create().register("https", sslsf)
        .build();

PoolingHttpClientConnectionManager cm = new PoolingHttpClientConnectionManager(
        socketFactoryRegistry);
CloseableHttpClient httpclient = HttpClients.custom()
        .setConnectionManager(cm).build();
   
   


作者：zychen143
链接：http://www.jianshu.com/p/4dc94077c9dc
來源：简书
著作权归作者所有。商业转载请联系作者获得授权，非商业转载请注明出处。