stackoom
  简体   繁体   中英

HTTPs HTTPURLConnection Issue

 原文  2015-04-12 18:33:21       java/ rest/ ssl/ httpurlconnection

Question

I have a REST API say https://testing.com/ap//v1/test/23123 . This is my Java code: 

URL restServiceURL = new URL(targetURL);

Proxy proxy = new Proxy(Proxy.Type.HTTP, new InetSocketAddress("100.3.4.54", 9128));
HttpURLConnection httpConnection = (HttpURLConnection) restServiceURL.openConnection(proxy);
httpConnection.setRequestMethod("GET");
httpConnection.setRequestProperty("Accept", "application/json");

if (httpConnection.getResponseCode() != 200) {
    throw new RuntimeException("HTTP GET Request Failed with Error code : "
            + httpConnection.getResponseCode());
}

BufferedReader responseBuffer = new BufferedReader(new InputStreamReader(
        (httpConnection.getInputStream())));

This throws an java exception: 

javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path validation failed: java.security.cert.CertPathValidatorException: CA key usage check failed: keyCertSign bit is not set
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:174)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1591)
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:187)
at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Handshaker.java:181)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:975)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:123)
at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Handshaker.java:516)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Handshaker.java:454)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:884)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1096)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1123)

Is there any way to bypass this https validation? What is the best way to fix this?

1 answers

solution1
 0  2015-04-12 23:04:24

The server certificate is invalid. A signing certificate was presented that isn't a signing certificate, that is to say it doesn't have the keyCertSign bit set.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question HttpURLConnection issue Accommodate HTTPS Connections in HttpURLConnection Cannot connect to https with HttpURLConnection Https Website using HttpURLConnection HttpURLConnection with https InputStream Garbled HttpURLConnection to HTTPs with proxy HttpURLConnection - “https://” vs. “http://” how to check https using HttpURLConnection HttpUrlConnection and file issue BitmapFactory and HTTPUrlConnection issue
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM