SSLPeerUnverifiedException OkHttp?
SSLPeerUnverifiedException OkHttp?
我正在尝试使用 OkHttp 库将 post 请求发送到 API 并带有一些 url 参数。按照 this blog post 到目前为止,我有这个代码:
public String okHttpRequest() throws IOException{
OkHttpClient client = new OkHttpClient();
OkHttpClient.Builder builder = new OkHttpClient.Builder();
builder.hostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
});
HttpUrl.Builder urlBuilder = HttpUrl.parse("myurl").newBuilder();
urlBuilder.addQueryParameter("username","username");
urlBuilder.addQueryParameter("password","7777");
String url = urlBuilder.build().toString();
Request request = new Request.Builder()
.url(url)
.build();
//HERE EXCEPTION IS THROWN
Response response = client.newCall(request).execute();
return response.body().string();
}
例外情况是:
javax.net.ssl.SSLPeerUnverifiedException: Hostname {domain} not verified:
显然您尝试连接到 SSL 网站 (https),因此您需要在小代码片段下方添加 SSLSocketFactory。
OkHttpClient client = new OkHttpClient();
client.setHostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
});
有关详细信息,请参阅此 or ,它应该对您有所帮助。
如果您想 "trust all certificates",请参阅 this 示例,但 不推荐 并且仅应用于 测试 用途!
检查 SSLSession 主机名和您的连接主机名...
OkHttpClient client = new OkHttpClient();
client.setHostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
if (!urlHostName.equalsIgnoreCase(session.getPeerHost())) {
System.out.println("Warning: URL host '" + urlHostName
+ "' is different to SSLSession host '"
+ session.getPeerHost() + "'.");
}
return true;
}
});
更新
com.squareup.okhttp3:okhttp:3.0.1
的代码
mTextView = (TextView) findViewById(R.id.textView);
mHandler = new Handler(Looper.getMainLooper());
final Request request = new Request.Builder()
.url("https://...")
.post(formBody)
.build();
client.newCall(request).enqueue(new Callback() {
@Override
public void onFailure(Call call, final IOException e) {
Log.e(LOG_TAG, e.toString());
mHandler.post(new Runnable() {
@Override
public void run() {
String message = request.toString() + "\r\n" + e.toString();
mTextView.setText(message);
}
});
}
@Override
public void onResponse(Call call, Response response) throws IOException {
try {
JSONObject jsonObject = new JSONObject(response.body().string());
final String message = jsonObject.toString(5);
Log.i(LOG_TAG, message);
mHandler.post(new Runnable() {
@Override
public void run() {
mTextView.setText(message);
}
});
} catch (JSONException e) {
e.printStackTrace();
}
}
});
因为你的项目使用了OkHttp v3.0.0-RC1,所以要修复这个Exception,你的代码应该如下例:
OkHttpClient client = new OkHttpClient.Builder()
.hostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
})
.build();
Request request = new Request.Builder()
.url("https://...")
.build();
client.newCall(request).enqueue(new Callback() {
@Override
public void onFailure(final Request request, final IOException e) {
// do something...
}
@Override
public void onResponse(Response response) throws IOException {
// do something...
}
});
但是,我建议您阅读 Google 关于 Common Problems with Hostname Verification 的文档以获取更多信息,而不是上面的 return true;。
更有用的 link 是 OkHttp's HTTPS wiki。
希望对您有所帮助!
P/S:请注意,我使用 OkHttp 的异步方式(在 client.newCall(request).enqueue(new Callback()...),你也可以使用同步方式作为你的代码。
我正在尝试使用 OkHttp 库将 post 请求发送到 API 并带有一些 url 参数。按照 this blog post 到目前为止,我有这个代码:
public String okHttpRequest() throws IOException{
OkHttpClient client = new OkHttpClient();
OkHttpClient.Builder builder = new OkHttpClient.Builder();
builder.hostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
});
HttpUrl.Builder urlBuilder = HttpUrl.parse("myurl").newBuilder();
urlBuilder.addQueryParameter("username","username");
urlBuilder.addQueryParameter("password","7777");
String url = urlBuilder.build().toString();
Request request = new Request.Builder()
.url(url)
.build();
//HERE EXCEPTION IS THROWN
Response response = client.newCall(request).execute();
return response.body().string();
}
例外情况是:
javax.net.ssl.SSLPeerUnverifiedException: Hostname {domain} not verified:
显然您尝试连接到 SSL 网站 (https),因此您需要在小代码片段下方添加 SSLSocketFactory。
OkHttpClient client = new OkHttpClient();
client.setHostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
});
有关详细信息,请参阅此
如果您想 "trust all certificates",请参阅 this 示例,但 不推荐 并且仅应用于 测试 用途!
检查 SSLSession 主机名和您的连接主机名...
OkHttpClient client = new OkHttpClient();
client.setHostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
if (!urlHostName.equalsIgnoreCase(session.getPeerHost())) {
System.out.println("Warning: URL host '" + urlHostName
+ "' is different to SSLSession host '"
+ session.getPeerHost() + "'.");
}
return true;
}
});
更新
com.squareup.okhttp3:okhttp:3.0.1
mTextView = (TextView) findViewById(R.id.textView);
mHandler = new Handler(Looper.getMainLooper());
final Request request = new Request.Builder()
.url("https://...")
.post(formBody)
.build();
client.newCall(request).enqueue(new Callback() {
@Override
public void onFailure(Call call, final IOException e) {
Log.e(LOG_TAG, e.toString());
mHandler.post(new Runnable() {
@Override
public void run() {
String message = request.toString() + "\r\n" + e.toString();
mTextView.setText(message);
}
});
}
@Override
public void onResponse(Call call, Response response) throws IOException {
try {
JSONObject jsonObject = new JSONObject(response.body().string());
final String message = jsonObject.toString(5);
Log.i(LOG_TAG, message);
mHandler.post(new Runnable() {
@Override
public void run() {
mTextView.setText(message);
}
});
} catch (JSONException e) {
e.printStackTrace();
}
}
});
因为你的项目使用了OkHttp v3.0.0-RC1,所以要修复这个Exception,你的代码应该如下例:
OkHttpClient client = new OkHttpClient.Builder()
.hostnameVerifier(new HostnameVerifier() {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
})
.build();
Request request = new Request.Builder()
.url("https://...")
.build();
client.newCall(request).enqueue(new Callback() {
@Override
public void onFailure(final Request request, final IOException e) {
// do something...
}
@Override
public void onResponse(Response response) throws IOException {
// do something...
}
});
但是,我建议您阅读 Google 关于 Common Problems with Hostname Verification 的文档以获取更多信息,而不是上面的 return true;。
更有用的 link 是 OkHttp's HTTPS wiki。
希望对您有所帮助!
P/S:请注意,我使用 OkHttp 的异步方式(在 client.newCall(request).enqueue(new Callback()...),你也可以使用同步方式作为你的代码。