Example 41 with SSLConnectionSocketFactory
use of org.apache.http.conn.ssl.SSLConnectionSocketFactory in project cdap-ingest by caskdata.
the class RestUtil method getRegistryWithDisabledCertCheck.
public static Registry<ConnectionSocketFactory> getRegistryWithDisabledCertCheck() throws KeyManagementException, NoSuchAlgorithmException {
SSLContext sslContext = SSLContext.getInstance("SSL");
sslContext.init(null, new TrustManager[] { new X509TrustManager() {
@Override
public java.security.cert.X509Certificate[] getAcceptedIssuers() {
return null;
}
@Override
public void checkClientTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws CertificateException {
}
@Override
public void checkServerTrusted(java.security.cert.X509Certificate[] x509Certificates, String s) throws CertificateException {
}
} }, new SecureRandom());
SSLConnectionSocketFactory sf = new SSLConnectionSocketFactory(sslContext, SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
return RegistryBuilder.<ConnectionSocketFactory>create().register("https", sf).register("http", PlainConnectionSocketFactory.getSocketFactory()).build();
}
Also used :
X509TrustManager(javax.net.ssl.X509TrustManager)
SecureRandom(java.security.SecureRandom)
CertificateException(java.security.cert.CertificateException)
SSLContext(javax.net.ssl.SSLContext)
SSLConnectionSocketFactory(org.apache.http.conn.ssl.SSLConnectionSocketFactory)
Example 42 with SSLConnectionSocketFactory
use of org.apache.http.conn.ssl.SSLConnectionSocketFactory in project calcite-avatica by apache.
the class CommonsHttpClientPoolCache method configureHttpsRegistry.
private static void configureHttpsRegistry(RegistryBuilder<ConnectionSocketFactory> registryBuilder, ConnectionConfig config) {
try {
SSLContext sslContext = getSSLContext(config);
final HostnameVerifier verifier = getHostnameVerifier(config.hostnameVerification());
SSLConnectionSocketFactory sslFactory = new SSLConnectionSocketFactory(sslContext, verifier);
registryBuilder.register("https", sslFactory);
} catch (Exception e) {
LOG.error("HTTPS registry configuration failed");
throw new RuntimeException(e);
}
}
Also used :
SSLContext(javax.net.ssl.SSLContext)
SSLConnectionSocketFactory(org.apache.http.conn.ssl.SSLConnectionSocketFactory)
IOException(java.io.IOException)
NoopHostnameVerifier(org.apache.http.conn.ssl.NoopHostnameVerifier)
HostnameVerifier(javax.net.ssl.HostnameVerifier)
Example 43 with SSLConnectionSocketFactory
use of org.apache.http.conn.ssl.SSLConnectionSocketFactory in project hazelcast by hazelcast.
the class HTTPCommunicator method newClient.
private CloseableHttpClient newClient() throws IOException {
HttpClientBuilder builder = HttpClients.custom();
if (sslEnabled) {
SSLContext sslContext;
try {
sslContext = SSLContext.getInstance(tlsProtocol);
} catch (NoSuchAlgorithmException e) {
throw new IOException(e);
}
try {
sslContext.init(clientKeyManagers, clientTrustManagers, new SecureRandom());
} catch (KeyManagementException e) {
throw new IOException(e);
}
builder.setSSLSocketFactory(new SSLConnectionSocketFactory(sslContext, SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER));
}
return builder.build();
}
Also used :
SecureRandom(java.security.SecureRandom)
HttpClientBuilder(org.apache.http.impl.client.HttpClientBuilder)
SSLContext(javax.net.ssl.SSLContext)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
IOException(java.io.IOException)
SSLConnectionSocketFactory(org.apache.http.conn.ssl.SSLConnectionSocketFactory)
KeyManagementException(java.security.KeyManagementException)
Example 44 with SSLConnectionSocketFactory
use of org.apache.http.conn.ssl.SSLConnectionSocketFactory in project spring-boot by spring-projects.
the class RemoteHttpClientTransport method getSecureConnectionSocketFactory.
private static LayeredConnectionSocketFactory getSecureConnectionSocketFactory(DockerHost host, SslContextFactory sslContextFactory) {
String directory = host.getCertificatePath();
Assert.hasText(directory, () -> "Docker host TLS verification requires trust material location to be specified with certificate path");
SSLContext sslContext = sslContextFactory.forDirectory(directory);
return new SSLConnectionSocketFactory(sslContext);
}
Also used :
SSLContext(javax.net.ssl.SSLContext)
SSLConnectionSocketFactory(org.apache.http.conn.ssl.SSLConnectionSocketFactory)
Example 45 with SSLConnectionSocketFactory
use of org.apache.http.conn.ssl.SSLConnectionSocketFactory in project spring-boot by spring-projects.
the class AbstractServletWebServerFactoryTests method sslDisabled.
@Test
void sslDisabled() throws Exception {
AbstractServletWebServerFactory factory = getFactory();
Ssl ssl = getSsl(null, "password", "classpath:test.jks");
ssl.setEnabled(false);
factory.setSsl(ssl);
this.webServer = factory.getWebServer(new ServletRegistrationBean<>(new ExampleServlet(true, false), "/hello"));
this.webServer.start();
SSLConnectionSocketFactory socketFactory = new SSLConnectionSocketFactory(new SSLContextBuilder().loadTrustMaterial(null, new TrustSelfSignedStrategy()).build());
HttpClient httpClient = HttpClients.custom().setSSLSocketFactory(socketFactory).build();
HttpComponentsClientHttpRequestFactory requestFactory = new HttpComponentsClientHttpRequestFactory(httpClient);
assertThatExceptionOfType(SSLException.class).isThrownBy(() -> getResponse(getLocalUrl("https", "/hello"), requestFactory));
}
Also used :
ServletRegistrationBean(org.springframework.boot.web.servlet.ServletRegistrationBean)
HttpClient(org.apache.http.client.HttpClient)
HttpComponentsClientHttpRequestFactory(org.springframework.http.client.HttpComponentsClientHttpRequestFactory)
Ssl(org.springframework.boot.web.server.Ssl)
SSLConnectionSocketFactory(org.apache.http.conn.ssl.SSLConnectionSocketFactory)
SSLContextBuilder(org.apache.http.ssl.SSLContextBuilder)
SSLException(javax.net.ssl.SSLException)
ExampleServlet(org.springframework.boot.testsupport.web.servlet.ExampleServlet)
TrustSelfSignedStrategy(org.apache.http.conn.ssl.TrustSelfSignedStrategy)
ParameterizedTest(org.junit.jupiter.params.ParameterizedTest)
Test(org.junit.jupiter.api.Test)
Aggregations
SSLConnectionSocketFactory (org.apache.http.conn.ssl.SSLConnectionSocketFactory)179
SSLContext (javax.net.ssl.SSLContext)109
ConnectionSocketFactory (org.apache.http.conn.socket.ConnectionSocketFactory)72
PlainConnectionSocketFactory (org.apache.http.conn.socket.PlainConnectionSocketFactory)61
PoolingHttpClientConnectionManager (org.apache.http.impl.conn.PoolingHttpClientConnectionManager)58
SSLContextBuilder (org.apache.http.ssl.SSLContextBuilder)58
IOException (java.io.IOException)49
TrustSelfSignedStrategy (org.apache.http.conn.ssl.TrustSelfSignedStrategy)45
CloseableHttpClient (org.apache.http.impl.client.CloseableHttpClient)44
HttpClientBuilder (org.apache.http.impl.client.HttpClientBuilder)41
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)35
KeyManagementException (java.security.KeyManagementException)34
NoopHostnameVerifier (org.apache.http.conn.ssl.NoopHostnameVerifier)33
HttpClient (org.apache.http.client.HttpClient)28
RequestConfig (org.apache.http.client.config.RequestConfig)28
KeyStoreException (java.security.KeyStoreException)27
KeyStore (java.security.KeyStore)26
HostnameVerifier (javax.net.ssl.HostnameVerifier)26
CertificateException (java.security.cert.CertificateException)24
HttpComponentsClientHttpRequestFactory (org.springframework.http.client.HttpComponentsClientHttpRequestFactory)24
