import java.security.KeyManagementException;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import javax.net.ssl.SSLContext;
import org.apache.http.config.Registry;
import org.apache.http.config.RegistryBuilder;
import org.apache.http.conn.socket.ConnectionSocketFactory;
import org.apache.http.conn.socket.LayeredConnectionSocketFactory;
import org.apache.http.conn.socket.PlainConnectionSocketFactory;
import org.apache.http.conn.ssl.NoopHostnameVerifier;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
import org.apache.http.ssl.SSLContexts;
import org.apache.http.ssl.TrustStrategy;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.http.client.HttpComponentsClientHttpRequestFactory;
import org.springframework.http.client.support.BasicAuthenticationInterceptor;
import org.springframework.web.client.RestTemplate;
@Value("${rest.read.timeout}")
private int readTimeout;
@Value("${rest.connect.timeout}")
private int connectTimeout;
@Value("${rest.connection.request.timeout}")
private int connectionRequestTimeout;
@Value("${rest.per.route}")
private int perRoute;
@Value("${rest.connection.total}")
private int maxTotal;
@Value("${rest.username}")
private String username;
@Value("${rest.password}")
private String password;
@Bean("wechatProxyRestTemplate")
public RestTemplate restTemplate(HttpComponentsClientHttpRequestFactory factory) {
try {
RestTemplate restTemplate = new RestTemplate(factory);
restTemplate.getInterceptors().add(new BasicAuthenticationInterceptor(username, password));
return restTemplate;
} catch (Exception e) {
throw new RuntimeException("Unable to initiate RestTemplate for access wechat-proxy.");
}
}
@Bean
public HttpComponentsClientHttpRequestFactory httpComponentsClientHttpRequestFactory() throws KeyStoreException, NoSuchAlgorithmException, KeyManagementException {
TrustStrategy acceptingTrustStrategy = (x509Certificates, authType) -> true;
SSLContext sslContext = SSLContexts.custom().loadTrustMaterial(null, acceptingTrustStrategy).build();
LayeredConnectionSocketFactory csf = new SSLConnectionSocketFactory(sslContext, new NoopHostnameVerifier());
Registry<ConnectionSocketFactory> sfr = RegistryBuilder.<ConnectionSocketFactory>create().register("http", PlainConnectionSocketFactory.getSocketFactory()).register("https", csf != null ? csf : SSLConnectionSocketFactory.getSocketFactory()).build();
PoolingHttpClientConnectionManager pollingConnectionManager = new PoolingHttpClientConnectionManager(sfr);
pollingConnectionManager.setMaxTotal(maxTotal);
pollingConnectionManager.setDefaultMaxPerRoute(perRoute);
CloseableHttpClient httpClient = HttpClients.custom().setSSLSocketFactory(csf).setConnectionManager(pollingConnectionManager).build();
HttpComponentsClientHttpRequestFactory factory = new HttpComponentsClientHttpRequestFactory();
factory.setHttpClient(httpClient);
factory.setConnectTimeout(connectTimeout);
factory.setReadTimeout(readTimeout);
factory.setConnectionRequestTimeout(connectionRequestTimeout);
return factory;
}RestTemplate 忽略HTTPS证书验证
©著作权归作者所有,转载或内容合作请联系作者
平台声明:文章内容(如有图片或视频亦包括在内)由作者上传并发布,文章内容仅代表作者本人观点,简书系信息发布平台,仅提供信息存储服务。
平台声明:文章内容(如有图片或视频亦包括在内)由作者上传并发布,文章内容仅代表作者本人观点,简书系信息发布平台,仅提供信息存储服务。
推荐阅读更多精彩内容
- 开发中,搭建的HTTPS协议的接口地址很多是没有证书的。对接这样的接口我们只能绕过证书验证。Spring Boot...
- package com.hbean.lift.config; import org.apache.http.con...
- @Bean RestTemplaterestTemplate(){ RestTemplate restTempla...
- 配置文件RestTemplateConfig 发起请求 与http请求不同的是,https使用restTempla...
