Example 6 with AllowAllHostnameVerifier
use of org.apache.http.conn.ssl.AllowAllHostnameVerifier in project android_frameworks_base by ResurrectionRemix.
the class AbstractProxyTest method testConnectViaHttpProxyToHttps.
private void testConnectViaHttpProxyToHttps(ProxyConfig proxyConfig) throws Exception {
TestSSLContext testSSLContext = TestSSLContext.create();
server.useHttps(testSSLContext.serverContext.getSocketFactory(), true);
server.enqueue(new MockResponse().setSocketPolicy(SocketPolicy.UPGRADE_TO_SSL_AT_END).clearHeaders());
server.enqueue(new MockResponse().setResponseCode(200).setBody("this response comes via a secure proxy"));
server.play();
HttpClient httpProxyClient = newHttpClient();
SSLSocketFactory sslSocketFactory = newSslSocketFactory(testSSLContext);
sslSocketFactory.setHostnameVerifier(new AllowAllHostnameVerifier());
httpProxyClient.getConnectionManager().getSchemeRegistry().register(new Scheme("https", sslSocketFactory, 443));
HttpGet request = new HttpGet("https://android.com/foo");
proxyConfig.configure(server, httpProxyClient, request);
HttpResponse response = httpProxyClient.execute(request);
assertEquals("this response comes via a secure proxy", contentToString(response));
RecordedRequest connect = server.takeRequest();
assertEquals("Connect line failure on proxy " + proxyConfig, "CONNECT android.com:443 HTTP/1.1", connect.getRequestLine());
assertContains(connect.getHeaders(), "Host: android.com");
RecordedRequest get = server.takeRequest();
assertEquals("GET /foo HTTP/1.1", get.getRequestLine());
assertContains(get.getHeaders(), "Host: android.com");
}
Also used :
RecordedRequest(com.google.mockwebserver.RecordedRequest)
MockResponse(com.google.mockwebserver.MockResponse)
Scheme(org.apache.http.conn.scheme.Scheme)
AllowAllHostnameVerifier(org.apache.http.conn.ssl.AllowAllHostnameVerifier)
HttpClient(org.apache.http.client.HttpClient)
HttpGet(org.apache.http.client.methods.HttpGet)
HttpResponse(org.apache.http.HttpResponse)
TestSSLContext(libcore.javax.net.ssl.TestSSLContext)
SSLSocketFactory(org.apache.http.conn.ssl.SSLSocketFactory)
Example 7 with AllowAllHostnameVerifier
use of org.apache.http.conn.ssl.AllowAllHostnameVerifier in project android_frameworks_base by AOSPA.
the class AbstractProxyTest method testConnectToHttps.
public void testConnectToHttps() throws Exception {
TestSSLContext testSSLContext = TestSSLContext.create();
server.useHttps(testSSLContext.serverContext.getSocketFactory(), false);
server.enqueue(new MockResponse().setResponseCode(200).setBody("this response comes via HTTPS"));
server.play();
HttpClient httpClient = newHttpClient();
SSLSocketFactory sslSocketFactory = newSslSocketFactory(testSSLContext);
sslSocketFactory.setHostnameVerifier(new AllowAllHostnameVerifier());
httpClient.getConnectionManager().getSchemeRegistry().register(new Scheme("https", sslSocketFactory, server.getPort()));
HttpResponse response = httpClient.execute(new HttpGet("https://localhost:" + server.getPort() + "/foo"));
assertEquals("this response comes via HTTPS", contentToString(response));
RecordedRequest request = server.takeRequest();
assertEquals("GET /foo HTTP/1.1", request.getRequestLine());
}
Also used :
RecordedRequest(com.google.mockwebserver.RecordedRequest)
MockResponse(com.google.mockwebserver.MockResponse)
Scheme(org.apache.http.conn.scheme.Scheme)
AllowAllHostnameVerifier(org.apache.http.conn.ssl.AllowAllHostnameVerifier)
HttpClient(org.apache.http.client.HttpClient)
HttpGet(org.apache.http.client.methods.HttpGet)
HttpResponse(org.apache.http.HttpResponse)
TestSSLContext(libcore.javax.net.ssl.TestSSLContext)
SSLSocketFactory(org.apache.http.conn.ssl.SSLSocketFactory)
Example 8 with AllowAllHostnameVerifier
use of org.apache.http.conn.ssl.AllowAllHostnameVerifier in project oxAuth by GluuFederation.
the class HttpService method getHttpsClientTrustAll.
public HttpClient getHttpsClientTrustAll() {
try {
SSLSocketFactory sf = new SSLSocketFactory(new TrustStrategy() {
@Override
public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {
return true;
}
}, new AllowAllHostnameVerifier());
PlainSocketFactory psf = PlainSocketFactory.getSocketFactory();
SchemeRegistry registry = new SchemeRegistry();
registry.register(new Scheme("http", 80, psf));
registry.register(new Scheme("https", 443, sf));
ClientConnectionManager ccm = new PoolingClientConnectionManager(registry);
return new DefaultHttpClient(ccm);
} catch (Exception ex) {
log.error("Failed to create TrustAll https client", ex);
return new DefaultHttpClient();
}
}
Also used :
TrustStrategy(org.apache.http.conn.ssl.TrustStrategy)
PoolingClientConnectionManager(org.apache.http.impl.conn.PoolingClientConnectionManager)
Scheme(org.apache.http.conn.scheme.Scheme)
AllowAllHostnameVerifier(org.apache.http.conn.ssl.AllowAllHostnameVerifier)
CertificateException(java.security.cert.CertificateException)
PlainSocketFactory(org.apache.http.conn.scheme.PlainSocketFactory)
PoolingClientConnectionManager(org.apache.http.impl.conn.PoolingClientConnectionManager)
ClientConnectionManager(org.apache.http.conn.ClientConnectionManager)
X509Certificate(java.security.cert.X509Certificate)
DefaultHttpClient(org.apache.http.impl.client.DefaultHttpClient)
SslDefaultHttpClient(org.xdi.net.SslDefaultHttpClient)
ClientProtocolException(org.apache.http.client.ClientProtocolException)
IOException(java.io.IOException)
CertificateException(java.security.cert.CertificateException)
UnsupportedEncodingException(java.io.UnsupportedEncodingException)
SchemeRegistry(org.apache.http.conn.scheme.SchemeRegistry)
SSLSocketFactory(org.apache.http.conn.ssl.SSLSocketFactory)
Example 9 with AllowAllHostnameVerifier
use of org.apache.http.conn.ssl.AllowAllHostnameVerifier in project cloudstack by apache.
the class HypervDirectConnectResource method postHttpRequest.
public static String postHttpRequest(final String jsonCmd, final URI agentUri) {
// Using Apache's HttpClient for HTTP POST
// Java-only approach discussed at on StackOverflow concludes with
// comment to use Apache HttpClient
// http://stackoverflow.com/a/2793153/939250, but final comment is to
// use Apache.
String logMessage = StringEscapeUtils.unescapeJava(jsonCmd);
logMessage = cleanPassword(logMessage);
s_logger.debug("POST request to " + agentUri.toString() + " with contents " + logMessage);
// Create request
HttpClient httpClient = null;
final TrustStrategy easyStrategy = new TrustStrategy() {
@Override
public boolean isTrusted(final X509Certificate[] chain, final String authType) throws CertificateException {
return true;
}
};
try {
final SSLSocketFactory sf = new SSLSocketFactory(easyStrategy, new AllowAllHostnameVerifier());
final SchemeRegistry registry = new SchemeRegistry();
registry.register(new Scheme("https", DEFAULT_AGENT_PORT, sf));
final ClientConnectionManager ccm = new BasicClientConnectionManager(registry);
httpClient = new DefaultHttpClient(ccm);
} catch (final KeyManagementException e) {
s_logger.error("failed to initialize http client " + e.getMessage());
} catch (final UnrecoverableKeyException e) {
s_logger.error("failed to initialize http client " + e.getMessage());
} catch (final NoSuchAlgorithmException e) {
s_logger.error("failed to initialize http client " + e.getMessage());
} catch (final KeyStoreException e) {
s_logger.error("failed to initialize http client " + e.getMessage());
}
String result = null;
// TODO: are there timeout settings and worker thread settings to tweak?
try {
final HttpPost request = new HttpPost(agentUri);
// JSON encode command
// Assumes command sits comfortably in a string, i.e. not used for
// large data transfers
final StringEntity cmdJson = new StringEntity(jsonCmd);
request.addHeader("content-type", "application/json");
request.setEntity(cmdJson);
s_logger.debug("Sending cmd to " + agentUri.toString() + " cmd data:" + logMessage);
final HttpResponse response = httpClient.execute(request);
// Unsupported commands will not route.
if (response.getStatusLine().getStatusCode() == HttpStatus.SC_NOT_FOUND) {
final String errMsg = "Failed to send : HTTP error code : " + response.getStatusLine().getStatusCode();
s_logger.error(errMsg);
final String unsupportMsg = "Unsupported command " + agentUri.getPath() + ". Are you sure you got the right type of" + " server?";
final Answer ans = new UnsupportedAnswer(null, unsupportMsg);
s_logger.error(ans);
result = s_gson.toJson(new Answer[] { ans });
} else if (response.getStatusLine().getStatusCode() != HttpStatus.SC_OK) {
final String errMsg = "Failed send to " + agentUri.toString() + " : HTTP error code : " + response.getStatusLine().getStatusCode();
s_logger.error(errMsg);
return null;
} else {
result = EntityUtils.toString(response.getEntity());
final String logResult = cleanPassword(StringEscapeUtils.unescapeJava(result));
s_logger.debug("POST response is " + logResult);
}
} catch (final ClientProtocolException protocolEx) {
// Problem with HTTP message exchange
s_logger.error(protocolEx);
} catch (final IOException connEx) {
// Problem with underlying communications
s_logger.error(connEx);
} finally {
httpClient.getConnectionManager().shutdown();
}
return result;
}
Also used :
HttpPost(org.apache.http.client.methods.HttpPost)
TrustStrategy(org.apache.http.conn.ssl.TrustStrategy)
Scheme(org.apache.http.conn.scheme.Scheme)
AllowAllHostnameVerifier(org.apache.http.conn.ssl.AllowAllHostnameVerifier)
HttpResponse(org.apache.http.HttpResponse)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
KeyStoreException(java.security.KeyStoreException)
IOException(java.io.IOException)
BasicClientConnectionManager(org.apache.http.impl.conn.BasicClientConnectionManager)
ClientConnectionManager(org.apache.http.conn.ClientConnectionManager)
DefaultHttpClient(org.apache.http.impl.client.DefaultHttpClient)
KeyManagementException(java.security.KeyManagementException)
ClientProtocolException(org.apache.http.client.ClientProtocolException)
StringEntity(org.apache.http.entity.StringEntity)
UnsupportedAnswer(com.cloud.agent.api.UnsupportedAnswer)
CheckSshAnswer(com.cloud.agent.api.check.CheckSshAnswer)
GetDomRVersionAnswer(com.cloud.agent.api.GetDomRVersionAnswer)
CheckS2SVpnConnectionsAnswer(com.cloud.agent.api.CheckS2SVpnConnectionsAnswer)
SetPortForwardingRulesAnswer(com.cloud.agent.api.routing.SetPortForwardingRulesAnswer)
SetSourceNatAnswer(com.cloud.agent.api.routing.SetSourceNatAnswer)
PlugNicAnswer(com.cloud.agent.api.PlugNicAnswer)
GetVmConfigAnswer(com.cloud.agent.api.GetVmConfigAnswer)
NetworkUsageAnswer(com.cloud.agent.api.NetworkUsageAnswer)
Answer(com.cloud.agent.api.Answer)
UnPlugNicAnswer(com.cloud.agent.api.UnPlugNicAnswer)
SetStaticNatRulesAnswer(com.cloud.agent.api.routing.SetStaticNatRulesAnswer)
IpAssocAnswer(com.cloud.agent.api.routing.IpAssocAnswer)
SetFirewallRulesAnswer(com.cloud.agent.api.routing.SetFirewallRulesAnswer)
CheckRouterAnswer(com.cloud.agent.api.CheckRouterAnswer)
SetStaticRouteAnswer(com.cloud.agent.api.routing.SetStaticRouteAnswer)
UnsupportedAnswer(com.cloud.agent.api.UnsupportedAnswer)
UnrecoverableKeyException(java.security.UnrecoverableKeyException)
HttpClient(org.apache.http.client.HttpClient)
DefaultHttpClient(org.apache.http.impl.client.DefaultHttpClient)
SchemeRegistry(org.apache.http.conn.scheme.SchemeRegistry)
BasicClientConnectionManager(org.apache.http.impl.conn.BasicClientConnectionManager)
SSLSocketFactory(org.apache.http.conn.ssl.SSLSocketFactory)
Example 10 with AllowAllHostnameVerifier
use of org.apache.http.conn.ssl.AllowAllHostnameVerifier in project openstack4j by ContainX.
the class HttpClientFactory method buildClient.
private CloseableHttpClient buildClient(Config config) {
HttpClientBuilder cb = HttpClientBuilder.create().setUserAgent(USER_AGENT);
if (config.getProxy() != null) {
try {
URL url = new URL(config.getProxy().getHost());
HttpHost proxy = new HttpHost(url.getHost(), config.getProxy().getPort(), url.getProtocol());
cb.setProxy(proxy);
} catch (MalformedURLException e) {
LOG.error(e.getMessage(), e);
}
}
if (config.isIgnoreSSLVerification()) {
cb.setSslcontext(UntrustedSSL.getSSLContext());
cb.setHostnameVerifier(new AllowAllHostnameVerifier());
}
if (config.getSslContext() != null)
cb.setSslcontext(config.getSslContext());
if (config.getMaxConnections() > 0) {
cb.setMaxConnTotal(config.getMaxConnections());
}
if (config.getMaxConnectionsPerRoute() > 0) {
cb.setMaxConnPerRoute(config.getMaxConnectionsPerRoute());
}
RequestConfig.Builder rcb = RequestConfig.custom();
if (config.getConnectTimeout() > 0)
rcb.setConnectTimeout(config.getConnectTimeout());
if (config.getReadTimeout() > 0)
rcb.setSocketTimeout(config.getReadTimeout());
if (INTERCEPTOR != null) {
INTERCEPTOR.onClientCreate(cb, rcb, config);
}
return cb.setDefaultRequestConfig(rcb.build()).build();
}
Also used :
RequestConfig(org.apache.http.client.config.RequestConfig)
MalformedURLException(java.net.MalformedURLException)
HttpHost(org.apache.http.HttpHost)
AllowAllHostnameVerifier(org.apache.http.conn.ssl.AllowAllHostnameVerifier)
HttpClientBuilder(org.apache.http.impl.client.HttpClientBuilder)
URL(java.net.URL)
Aggregations
AllowAllHostnameVerifier (org.apache.http.conn.ssl.AllowAllHostnameVerifier)25
Scheme (org.apache.http.conn.scheme.Scheme)16
SSLSocketFactory (org.apache.http.conn.ssl.SSLSocketFactory)16
HttpResponse (org.apache.http.HttpResponse)14
HttpClient (org.apache.http.client.HttpClient)13
MockResponse (com.google.mockwebserver.MockResponse)12
RecordedRequest (com.google.mockwebserver.RecordedRequest)12
TestSSLContext (libcore.javax.net.ssl.TestSSLContext)12
HttpGet (org.apache.http.client.methods.HttpGet)12
JndiRegistry (org.apache.camel.impl.JndiRegistry)4
SchemeRegistry (org.apache.http.conn.scheme.SchemeRegistry)4
TrustStrategy (org.apache.http.conn.ssl.TrustStrategy)4
DefaultHttpClient (org.apache.http.impl.client.DefaultHttpClient)4
IOException (java.io.IOException)3
KeyManagementException (java.security.KeyManagementException)3
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)3
CertificateException (java.security.cert.CertificateException)3
ClientConnectionManager (org.apache.http.conn.ClientConnectionManager)3
KeyStoreException (java.security.KeyStoreException)2
X509Certificate (java.security.cert.X509Certificate)2
