retrofit2中ssl的Trust anchor for certification path not found问题
在retrofit2中使用ssl,刚刚接触,极可能会出现以下错误。java
java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.
究其缘由就是没有找到本地的证书。很是简单的错误。只要将证书放在本地就能够了。安全
但是有时(好比说开发时、或者访问别人的https站点时),咱们须要将其忽略。session
这时,咱们就须要将其忽略。dom
在iOS开发中,一句代码就能够解决。ide
[operation.securityPolicy setValidatesDomainName:NO];
可是在Android中使用了retrofit2后,却怎么也没有找到设置取消安全验证的方法。ui
网上查了好久,都是从新设置一个OKHttpClient,在OKHttpClient中进行配置。spa
可是我在使用中又出现了以下的问题:code
compile 'com.squareup.retrofit2:retrofit:2.0.2'
我引用的retrofit包是2.0.2的,这个版本默认引用的OKHttp中,hostnameVerifier和sslSocketFactory是不可修改的。blog
好吧,没办法,只能用反射解决此问题了···ssl
1 OkHttpClient sClient = new OkHttpClient(); 2 3 SSLContext sc = null; 4 try { 5 sc = SSLContext.getInstance("SSL"); 6 sc.init(null, new TrustManager[]{new X509TrustManager() { 7 @Override 8 public void checkClientTrusted(java.security.cert.X509Certificate[] chain, String authType) throws java.security.cert.CertificateException { 9 10 } 11 12 @Override 13 public void checkServerTrusted(java.security.cert.X509Certificate[] chain, String authType) throws java.security.cert.CertificateException { 14 15 } 16 17 @Override 18 public java.security.cert.X509Certificate[] getAcceptedIssuers() { 19 return null; 20 } 21 }}, new SecureRandom()); 22 } catch (Exception e) { 23 e.printStackTrace(); 24 } 25 26 HostnameVerifier hv1 = new HostnameVerifier() { 27 @Override 28 public boolean verify(String hostname, SSLSession session) { 29 return true; 30 } 31 }; 32 33 String workerClassName="okhttp3.OkHttpClient"; 34 try { 35 Class workerClass = Class.forName(workerClassName); 36 Field hostnameVerifier = workerClass.getDeclaredField("hostnameVerifier"); 37 hostnameVerifier.setAccessible(true); 38 hostnameVerifier.set(sClient, hv1); 39 40 Field sslSocketFactory = workerClass.getDeclaredField("sslSocketFactory"); 41 sslSocketFactory.setAccessible(true); 42 sslSocketFactory.set(sClient, sc.getSocketFactory()); 43 } catch (Exception e) { 44 e.printStackTrace(); 45 } 46 47 Retrofit retrofit = new Retrofit.Builder() 48 .baseUrl(URL) 49 .addConverterFactory(GsonConverterFactory.create()) 50 .client(sClient) 51 .build();
如上,就能够屏蔽掉ssl的证书验证了~
若是有更好的办法,也请您告诉我~
相关文章
- 1. Android 7.0 SSL Trust anchor for certification path not found.
- 2. 微信小游戏 wss Android 6 及一下 访问 trustanchor for certification path not found
- 3. F5 VIP SSL Certification install ( SSL Offloading
- 4. Could not establish trust relationship for the SSL/TLS secure channel 问题解决方法
- 5. Path does not chain with any of the trust anchors
- 6. The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure
- 7. dot” not found in path
- 8. PhantomJS not found on PATH
- 9. 解决PKIX:unable to find valid certification path to requested target 的问题
- 10. symbols not found for architecture arm64 问题解决
- 更多相关文章...
- • SVG
- SVG 教程 - • Redis悲观锁解决高并发抢红包的问题 - 红包项目实战
- • IntelliJ IDEA中SpringBoot properties文件不能自动提示问题解决
- • PHP Ajax 跨域问题最佳解决方案
相关标签/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
欢迎关注本站公众号,获取更多信息
相关文章
- 1. Android 7.0 SSL Trust anchor for certification path not found.
- 2. 微信小游戏 wss Android 6 及一下 访问 trustanchor for certification path not found
- 3. F5 VIP SSL Certification install ( SSL Offloading
- 4. Could not establish trust relationship for the SSL/TLS secure channel 问题解决方法
- 5. Path does not chain with any of the trust anchors
- 6. The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure
- 7. dot” not found in path
- 8. PhantomJS not found on PATH
- 9. 解决PKIX:unable to find valid certification path to requested target 的问题
- 10. symbols not found for architecture arm64 问题解决