如何将证书添加到Android信任库?
[英]How to add a certificate to the Android trust store?
问题描述
我有一个专为Android设计的客户端应用。 Android应用程序基于XML和Java,我们的Windows服务器端应用程序也是如此。 问题是,由于我们现在正在使用Android,我们必须处理信任存储。 有没有办法动态地将证书添加到信任存储区?
客户端连接代码:
InputStream stream = main.getResources().openRawResource(R.raw.keystore);
KeyStore trustStore;
try {
trustStore = KeyStore.getInstance("BKS");
trustStore.load(stream, "password".toCharArray());
} catch (Exception e) {
e.printStackTrace();
}
SSLSocketFactory factory = (SSLSocketFactory) SSLSocketFactory.getDefault();
try{
clientSocket = (SSLSocket) factory.createSocket(address, port);
}catch (Exception ex){
ex.printStackTrace();
}
服务器端连接代码:
System.setProperty("javax.net.ssl.keyStore", System.getProperty("java.io.tmpdir") + "keystore_30290.jks");
System.setProperty("javax.net.ssl.keyStorePassword", "password");
SSLServerSocketFactory factory = (SSLServerSocketFactory) SSLServerSocketFactory.getDefault();
try {
server = ((SSLServerSocket)factory.createServerSocket(config.port));
} catch (Exception e) {
e.printStackTrace();
System.out.println("Failed to successfully bind to port "+config.port+".");
System.exit(-1);
}
1 个解决方案
解决方案1
3 已采纳 2016-07-02 17:12:04
考虑到你的trustStore ,尝试这样的事情:
KeyManagerFactory kmfactory = KeyManagerFactory.getInstance(
KeyManagerFactory.getDefaultAlgorithm());
kmfactory.init(trustStore, "password".toCharArray());
KeyManager[] keymanagers = kmfactory.getKeyManagers();
TrustManagerFactory tmf=TrustManagerFactory
.getInstance(TrustManagerFactory.getDefaultAlgorithm());
tmf.init(trustStore);
SSLContext sslContext=SSLContext.getInstance("TLSv1.2");
sslContext.init(keymanagers, tmf.getTrustManagers(), new SecureRandom());
SSLSocketFactory factory=sslContext.getSocketFactory();
此代码的最小API为16。
每当创建新 pod 时,如何自动将证书添加到 kubernetes 上的 Java 信任库?
[英]How to automatically add a certificate to a Java trust store on kubernetes whenever a new pod is created?
如何以编程方式检查X509证书是否已存在于Java Trust Store中?
[英]How to check if X509 certificate is already in the Java Trust Store programatically?
在建立与网站的连接时,如何确保域级 SSL 证书存在于信任库中?
[英]How to make sure the domain level SSL certificate is present in trust store while establishing the connection to a website?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.