By default, accessing an HTTPS URL using the URL class results in an exception if the server's certificate chain cannot be validated has not previously been installed in the truststore. If you want to disable the validation of certificates for testing purposes, you need to override the default trust manager with one that trusts all certificates.
// Create a trust manager that does not validate certificate chains
TrustManager[] trustAllCerts = new TrustManager[]{
new X509TrustManager() {
public java.security.cert.X509Certificate[] getAcceptedIssuers() {
return null;
}
public void checkClientTrusted(
java.security.cert.X509Certificate[] certs, String authType) {
}
public void checkServerTrusted(
java.security.cert.X509Certificate[] certs, String authType) {
}
}
};
// Install the all-trusting trust manager
try {
SSLContext sc = SSLContext.getInstance("SSL");
sc.init(null, trustAllCerts, new java.security.SecureRandom());
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
} catch (Exception e) {
}
// Now you can access an https URL without having the certificate in the truststore
try {
URL url = new URL("https://hostname/index.html");
} catch (MalformedURLException e) {
}
Subscribe to:
Post Comments (Atom)
Popular Posts
-
Follow the steps below add git remote origin to your local app : Use git init to create a new local repository. Add files and perform a...
-
While making a HTTP(s) connection to external resource from weblogic server following exception comes because underline API uses weblogic im...
-
Recently while installing android SDK , I was getting following error "Unable to elevate" error Solution I tried : 1. R... -
If you want to manage and monitor the services, you can use PM2 , a process manager for Node.js. This is particularly useful in production ...
No comments:
Post a Comment
Thanks for your comment, will revert as soon as we read it.