jeeff wrote:
Ahojte,potrebujem sa cez HTTPS pripojit na jeden server, ktory ma ale certifikat vydany nejakou podivnou spolocnostou a este je aj expirovany. Java to samozrejme odmietne. Da sa nejako nastavit, aby sa pripojil bez validacie certifikatu? Certifikat nechcem importovat do keystore. Skusal som to cez klasicke URLConnection aj Jakarta HTTPClient.
Zavolej si tuhle metodu, ta overovani zrusi. Teda zrusi ho pro uplne
vsechny SSL spojeni provadena pres URLConnection, pokud by se
nektera jina spojeni mela overovat, musi se na to trochu jinak.
static void doNotVerifyCertificates() throws
java.security.NoSuchAlgorithmException,
java.security.KeyManagementException {
// Create a trust manager that does not validate certificate chains
TrustManager[] trustAllCerts = new TrustManager[]{
new X509TrustManager() {
public X509Certificate[] getAcceptedIssuers() { return
null; }
public void checkClientTrusted(X509Certificate[] certs,
String authType) { }
public void checkServerTrusted(X509Certificate[] certs,
String authType) { }
}
};
// Install the all-trusting trust manager
SSLContext sc = SSLContext.getInstance("SSL");
sc.init(null, trustAllCerts, null);
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
}
Makub
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Supercomputing Center Brno Martin Kuba
Institute of Computer Science email: [EMAIL PROTECTED]
Masaryk University http://www.ics.muni.cz/~makub/
Botanicka 68a, 60200 Brno, CZ mobil: +420-603-533775
--------------------------------------------------------------
smime.p7s
Description: S/MIME Cryptographic Signature
