Android: Making Https Request

by

This method takes an HttpClient instance and returns a ready-for-https HttpClient instance.

 private HttpClient sslClient(HttpClient client) {
    try {
        X509TrustManager tm = new X509TrustManager() { 
            public void checkClientTrusted(X509Certificate[] xcs, String string) throws CertificateException {
            }

            public void checkServerTrusted(X509Certificate[] xcs, String string) throws CertificateException {
            }

            public X509Certificate[] getAcceptedIssuers() {
                return null;
            }
        };
        SSLContext ctx = SSLContext.getInstance("TLS");
        ctx.init(null, new TrustManager[]{tm}, null);
        SSLSocketFactory ssf = new MySSLSocketFactory(ctx);
        ssf.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
        ClientConnectionManager ccm = client.getConnectionManager();
        SchemeRegistry sr = ccm.getSchemeRegistry();
        sr.register(new Scheme("https", ssf, 443));
        return new DefaultHttpClient(ccm, client.getParams());
    } catch (Exception ex) {
        return null;
    }
}

Because the Android org.apache.http.conn.ssl.SSLSocketFactory does not have the SSLSocketFactory(SSLContext) constructor, I have extended the class as follows.

 public class MySSLSocketFactory extends SSLSocketFactory {
     SSLContext sslContext = SSLContext.getInstance("TLS");

     public MySSLSocketFactory(KeyStore truststore) throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
         super(truststore);

         TrustManager tm = new X509TrustManager() {
             public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
             }

             public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
             }

             public X509Certificate[] getAcceptedIssuers() {
                 return null;
             }
         };

         sslContext.init(null, new TrustManager[] { tm }, null);
     }

     public MySSLSocketFactory(SSLContext context) throws KeyManagementException, NoSuchAlgorithmException, KeyStoreException, UnrecoverableKeyException {
        super(null);
        sslContext = context;
     }

     @Override
     public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException, UnknownHostException {
         return sslContext.getSocketFactory().createSocket(socket, host, port, autoClose);
     }

     @Override
     public Socket createSocket() throws IOException {
         return sslContext.getSocketFactory().createSocket();
     }
}

Excellent article here: http://javaskeleton.blogspot.com/2010/07/avoiding-peer-not-authenticated-with.html

And some help here: Trusting all certificates using HttpClient over HTTPS

More Related Contents:

  1. Android 8: Cleartext HTTP traffic not permitted
  2. accepting HTTPS connections with self-signed certificates
  3. Android deprecated apache module (HttpClient, HttpResponse, etc.)
  4. How to display image from URL on Android
  5. How to add Apache HTTP API (legacy) as compile-time dependency to build.grade for Android M?
  6. How to enable TLS 1.2 support in an Android application (running on Android 4.1 JB)
  7. Android WebView not loading an HTTPS URL
  8. Method not found using DigestUtils in Android
  9. Some androids apps won’t connect through fiddler
  10. Does Android Volley support SSL?
  11. Android volley self signed HTTPS trust anchor for certification path not found
  12. Making a HTTPS request using Android Volley
  13. KSOAP 2 Android with HTTPS
  14. shouldOverrideUrlLoading in WebView for Android not running
  15. org.apache.http.conn.HttpHostConnectException: Connection to http://localhost refused in android
  16. javax.net.ssl.sslpeerunverifiedexception no peer certificate
  17. Android HttpClient and HTTPS
  18. How can I make Android Volley perform HTTPS request, using a certificate self-signed by an Unknown CA?
  19. Android Min SDK Version vs. Target SDK Version
  20. Android – How To Override the “Back” button so it doesn’t Finish() my Activity?
  21. How can I use the animation framework inside the canvas?
  22. Remove Fragment Page from ViewPager in Android
  23. Error:Execution failed for task ‘:app:transformClassesWithDexForDebug’
  24. Saving EditText content in RecyclerView
  25. How to get bluetooth connected devices using BluetoothHeadset API
  26. Speed Control of MediaPlayer in Android
  27. How to provide different Android app icons for different gradle buildTypes?
  28. How to use separate thread to perform http requests
  29. Screen blinking when using a webview with flash
  30. Android getting exact scroll position in ListView

Leave a Comment