5

我已经成功地在 Android 中使用 http 调用了 rest 服务。

但现在我想在 android 中调用 HTTPS RESTful 服务,我正在使用 Apache 的 HTTPmime API 来调用 REST 服务。

请任何人都可以帮助我在android中调用安全休息服务

4

1 回答 1

0

这是您可以用来忽略 SSL 证书错误的示例代码 创建一个名为 SimpleSSLSocketFactory 的新 java 类

  public class SimpleSSLSocketFactory extends org.apache.http.conn.ssl.SSLSocketFactory {
    private SSLSocketFactory sslFactory = HttpsURLConnection.getDefaultSSLSocketFactory();

    public SimpleSSLSocketFactory(KeyStore truststore) throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException,
            UnrecoverableKeyException {
        super(null);

        try {
            SSLContext context = SSLContext.getInstance("TLS");

            // Create a trust manager that does not validate certificate chains and simply
            // accept all type of certificates
            TrustManager[] trustAllCerts = new TrustManager[] { new X509TrustManager() {
                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                    return new java.security.cert.X509Certificate[] {};
                }

                public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
                }

                public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
                }
            } };

            // Initialize the socket factory
            context.init(null, trustAllCerts, new SecureRandom());
            sslFactory = context.getSocketFactory();
        } catch (Exception e) {
            e.printStackTrace();
        }
    }

    @Override
    public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException, UnknownHostException {
        return sslFactory.createSocket(socket, host, port, autoClose);
    }

    @Override
    public Socket createSocket() throws IOException {
        return sslFactory.createSocket();
    }
}

并使用以下 httpclient 而不是默认客户端

// Setup a custom SSL Factory object which simply ignore the certificates
    // validation and accept all type of self signed certificates
    SSLSocketFactory sslFactory = new SimpleSSLSocketFactory(null);
    sslFactory.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);

    // Enable HTTP parameters
    HttpParams paramsSecure = new BasicHttpParams();
    HttpProtocolParams.setVersion(paramsSecure, HttpVersion.HTTP_1_1);
    HttpProtocolParams.setContentCharset(paramsSecure, HTTP.UTF_8);

    // Register the HTTP and HTTPS Protocols. For HTTPS, register our custom SSL Factory object.
    SchemeRegistry registry = new SchemeRegistry();
    registry.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));
    registry.register(new Scheme("https", sslFactory, 443));

    // Create a new connection manager using the newly created registry and then create a new HTTP client
    // using this connection manager
    ClientConnectionManager ccm = new ThreadSafeClientConnManager(paramsSecure, registry);
    HttpClient httpclient = new DefaultHttpClient(ccm, paramsSecure);

干杯!!

于 2013-04-04T07:48:47.903 回答