【发布时间】:2017-10-30 03:27:54
【问题描述】:
我可以使用 curl 查询获取请求:
curl -k --key some.key --cert some.crt --url "https://app.com:7078/subscribers/checkExists/1"
查询后我得到200 OK 响应。我如何在 Java 中实现相同的目标?使用Spring RestTemplate?
我试图通过互联网手册禁用认证检查:
CloseableHttpClient httpClient = HttpClients.custom()
.setSSLHostnameVerifier(new NoopHostnameVerifier())
.build();
HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory();
requestFactory.setHttpClient(httpClient);
ResponseEntity<String> response = null;
String urlOverHttps = "https://app.com:7078/subscribers/checkExists/1";
response = new RestTemplate(requestFactory).exchange(urlOverHttps, HttpMethod.GET, null, String.class);
我也通过@Configuration尝试过:
@Bean
public boolean disableSSLValidation() throws Exception {
final SSLContext sslContext = SSLContext.getInstance("TLS");
sslContext.init(null, new TrustManager[]{new X509TrustManager() {
@Override
public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {
}
@Override
public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {
}
@Override
public X509Certificate[] getAcceptedIssuers() {
return new X509Certificate[0];
}
}}, null);
HttpsURLConnection.setDefaultSSLSocketFactory(sslContext.getSocketFactory());
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
public boolean verify(String hostname, SSLSession session) {
return true;
}
});
return true;
}
那个代码回复我400 Bad Request错误。
UPD
我还将我的 some.crt 文件添加到 %JAVA_HOME%\lib\security 并使用命令 - keytool -import -alias ca -file some.crt -keystore cacerts -storepass changeit 将其导入
那么,如何使用Spring RestTemplate 在GET 请求中提供我的some.crt 文件?
【问题讨论】:
标签: java spring resttemplate client-certificates spring-rest