HttpGet with HTTPS : SSLPeerUnverifiedException

by

Note: Do not do this in production code, use http instead, or the actual self signed public key as suggested above.

On HttpClient 4.xx:

import static org.junit.Assert.assertEquals;

import java.security.KeyManagementException;
import java.security.NoSuchAlgorithmException;
import java.security.cert.X509Certificate;

import javax.net.ssl.SSLContext;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;

import org.apache.http.HttpResponse;
import org.apache.http.client.methods.HttpGet;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.impl.client.DefaultHttpClient;
import org.junit.Test;

public class HttpClientTrustingAllCertsTest {

    @Test
    public void shouldAcceptUnsafeCerts() throws Exception {
        DefaultHttpClient httpclient = httpClientTrustingAllSSLCerts();
        HttpGet httpGet = new HttpGet("https://host_with_self_signed_cert");
        HttpResponse response = httpclient.execute( httpGet );
        assertEquals("HTTP/1.1 200 OK", response.getStatusLine().toString());
    }

    private DefaultHttpClient httpClientTrustingAllSSLCerts() throws NoSuchAlgorithmException, KeyManagementException {
        DefaultHttpClient httpclient = new DefaultHttpClient();

        SSLContext sc = SSLContext.getInstance("SSL");
        sc.init(null, getTrustingManager(), new java.security.SecureRandom());

        SSLSocketFactory socketFactory = new SSLSocketFactory(sc);
        Scheme sch = new Scheme("https", 443, socketFactory);
        httpclient.getConnectionManager().getSchemeRegistry().register(sch);
        return httpclient;
    }

    private TrustManager[] getTrustingManager() {
        TrustManager[] trustAllCerts = new TrustManager[] { new X509TrustManager() {
            @Override
            public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                return null;
            }

            @Override
            public void checkClientTrusted(X509Certificate[] certs, String authType) {
                // Do nothing
            }

            @Override
            public void checkServerTrusted(X509Certificate[] certs, String authType) {
                // Do nothing
            }

        } };
        return trustAllCerts;
    }
}

More Related Contents:

  1. Android SSL HttpGet (No peer certificate) error OR (Connection closed by peer) error
  2. Trusting all certificates using HttpClient over HTTPS
  3. Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
  4. Accept server’s self-signed ssl certificate in Java client
  5. Java: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  6. Java HTTPS client certificate authentication
  7. why doesn’t java send the client certificate during SSL handshake?
  8. How to fix the “java.security.cert.CertificateException: No subject alternative names present” error?
  9. How to handle invalid SSL certificates with Apache HttpClient? [duplicate]
  10. Simple Java HTTPS server
  11. SSLHandshakeException: No subject alternative names present
  12. How to force java server to accept only tls 1.2 and reject tls 1.0 and tls 1.1 connections
  13. Problems connecting via HTTPS/SSL through own Java client
  14. Java and HTTPS url connection without downloading certificate
  15. Whats an easy way to totally ignore ssl with java url connections?
  16. How to do an HTTPS POST from Android?
  17. Enabling specific SSL protocols with Android WebViewClient
  18. How can I know if the request to the servlet was executed using HTTP or HTTPS?
  19. Java SSLException: hostname in certificate didn’t match
  20. javax.net.ssl.SSLException: SSL handshake aborted Connection reset by peer while calling webservice Android
  21. SSL “Peer Not Authenticated” error with HttpClient 4.1
  22. Problems with https (No peer certificate) in android
  23. Why does SSL handshake give ‘Could not generate DH keypair’ exception?
  24. Problems using Maven and SSL behind proxy
  25. javax.net.ssl.SSLException: Received fatal alert: protocol_version
  26. Httpclient 4, error 302. How to redirect?
  27. javax.net.ssl.SSLHandshakeException: java.security.cert.CertPathValidatorException: Trust anchor for certification path not found
  28. Java SSLHandshakeException: no cipher suites in common
  29. SSLPeerUnverifiedException: peer not authenticated
  30. How Can I Access an SSL Connection Through Android?

Leave a Comment