Community Learn Tools Library Leisure
search
English
Home > Java > javaTutorial > How to Bypass Untrusted Server Certificates When Establishing HTTPS Connections on Android?

How to Bypass Untrusted Server Certificates When Establishing HTTPS Connections on Android?

DDD
Release: 2024-12-10 16:25:12
Original
903 people have browsed it

How to Bypass Untrusted Server Certificates When Establishing HTTPS Connections on Android?

HTTPS Connection Establishment on Android

When attempting to establish an HTTPS connection on Android, developers may encounter an exception related to an untrusted server certificate. To address this, one may consider accepting the server certificate.

Trust All Hosts

One approach to bypass certificate verification is to trust all hosts, effectively disabling the check. This can be achieved by implementing a custom HostnameVerifier and a TrustManager.

// Hostname verifier that always returns true
HostnameVerifier DO_NOT_VERIFY = new HostnameVerifier() {
    @Override
    public boolean verify(String hostname, SSLSession session) {
        return true;
    }
};

// Trust manager that accepts all certificates
TrustManager[] trustAllCerts = new TrustManager[]{
    new X509TrustManager() {
        @Override
        public X509Certificate[] getAcceptedIssuers() {
            return new X509Certificate[]{};
        }

        @Override
        public void checkClientTrusted(X509Certificate[] chain, String authType) {}

        @Override
        public void checkServerTrusted(X509Certificate[] chain, String authType) {}
    }
};
Copy after login

Next, initialize the SSLContext and apply the trust manager and hostname verifier.

SSLContext sc = SSLContext.getInstance("TLS");
sc.init(null, trustAllCerts, new SecureRandom());
HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
Copy after login

Example Usage

When creating an HTTP connection, check the protocol and apply the aforementioned configuration if it's HTTPS.

HttpURLConnection http = null;
String url = "https://example.com";

if (url.toLowerCase().equals("https")) {
    trustAllHosts();
    HttpsURLConnection https = (HttpsURLConnection) url.openConnection();
    https.setHostnameVerifier(DO_NOT_VERIFY);
    http = https;
} else {
    http = (HttpURLConnection) url.openConnection();
}
Copy after login

The above is the detailed content of How to Bypass Untrusted Server Certificates When Establishing HTTPS Connections on Android?. For more information, please follow other related articles on the PHP Chinese website!

source:php.cn
Previous article:How Can I Access Elements in Dynamic Nested Frames in Selenium WebDriver for Java? Next article:How Can I Determine the Operating System in Java?
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Latest Articles by Author
Latest Issues
function_exists() cannot determine the custom function Function test () {return true;} if (function_exists ('test')) {echo "test is function...
From 2024-04-29 11:01:01
0
3
2187
How to display the mobile version of Google Chrome Hello teacher, how can I change Google Chrome into a mobile version?
From 2024-04-23 00:22:19
0
11
2331
The child window operates the parent window, but the output does not respond. The first two sentences are executable, but the last sentence cannot be implemented.
From 2024-04-19 15:37:47
0
1
1961
There is no output in the parent window document.onclick = function(){ window.opener.document.write('I am the output of the child ...
From 2024-04-18 23:52:34
0
1
1846
Where is the courseware about CSS mind mapping? Courseware
From 2024-04-16 10:10:18
0
0
1899
Related Topics
More>
Popular Recommendations
Popular Tutorials
More>
Related Tutorials
Popular Recommendations
Latest courses
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template