在Android App中使用SSL
[英]Using SSL with Android App
问题描述
我正在按照本教程在Android App和我的服务器之间实现https连接。
我有一些问题:
- 密钥库和getKeystorePassword不能像方法一样被识别。
- createSSLSocketFactory()没有参数,但其定义类似于createSSLSocketFactory(final Context context) 。
- 我不理解类“ 公共类SecureHttpClient扩展DefaultHttpClient ”是否在@override clientConnectionManager之前完成,以及是否必须将“ 使用安全客户端”部分中编写的代码插入到我的mainActivity中。
1 个解决方案
解决方案1
0
您必须使用的功能,
/******************************for https request***********************************************/
private HttpClient sslClient(HttpClient client) {
try {
X509TrustManager tm = new X509TrustManager() {
public void checkClientTrusted(X509Certificate[] xcs, String string) throws CertificateException {
}
public void checkServerTrusted(X509Certificate[] xcs, String string) throws CertificateException {
}
public X509Certificate[] getAcceptedIssuers() {
return null;
}
};
SSLContext ctx = SSLContext.getInstance(getString(R.string.tls));
ctx.init(null, new TrustManager[]{tm}, null);
SSLSocketFactory ssf = new MySSLSocketFactory(ctx);
ssf.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
ClientConnectionManager ccm = client.getConnectionManager();
SchemeRegistry sr = ccm.getSchemeRegistry();
sr.register(new Scheme(getString(R.string.https), ssf, 443));
return new DefaultHttpClient(ccm, client.getParams());
} catch (Exception ex) {
return null;
}
}
public class MySSLSocketFactory extends SSLSocketFactory {
SSLContext sslContext = SSLContext.getInstance(getString(R.string.tls));
public MySSLSocketFactory(KeyStore truststore) throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
super(truststore);
TrustManager tm = new X509TrustManager() {
public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
}
public X509Certificate[] getAcceptedIssuers() {
return null;
}
};
sslContext.init(null, new TrustManager[] { tm }, null);
}
public MySSLSocketFactory(SSLContext context) throws KeyManagementException, NoSuchAlgorithmException, KeyStoreException, UnrecoverableKeyException {
super(null);
sslContext = context;
}
@Override
public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException, UnknownHostException {
return sslContext.getSocketFactory().createSocket(socket, host, port, autoClose);
}
@Override
public Socket createSocket() throws IOException {
return sslContext.getSocketFactory().createSocket();
}
}
/**********************************end********************************************/
并且U必须调用上述函数,如下所述,
// Execute HTTP Post Request
HttpClient client = new DefaultHttpClient();
//The Line you need to use to call above function
HttpClient sslHttpsClient=sslClient(client);
HttpConnectionParams.setConnectionTimeout(sslHttpsClient.getParams(), 10000); //Timeout Limit
HttpResponse response;
使用个人X509证书连接到Android应用中受SSL保护的API?
[英]Using personal X509 certificate to connect to SSL protected API in Android app?
Android通过SSL与Bouncy Castle进行服务器之间的通信
[英]Android to server communication using SSL with Bouncy Castle
Android:使用HttpsURLConnection的HTTPS(SSL)连接
[英]Android: HTTPS (SSL) connection using HttpsURLConnection
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.