点击(此处)折叠或打开

1. private HttpResponse handleCertificateExceptionAndRetry(IOException e,
   
2.                                                         HttpRequestBase method,
   
3.                                                         HttpClientBuilder client,
   
4.                                                         @Nullable HttpContext context)
   
5.         throws IOException {
   
6.     if (!isCertificateException(e)) {
   
7.         throw e;
   
8.     }
   
9. 
   
10.     if (isTrusted(method.getURI().getAuthority())) {
    
11.         // creating a special configuration that allows connections to non-trusted HTTPS hosts
    
12.         try {
    
13.             SSLContextBuilder sslContextBuilder = new SSLContextBuilder();
    
14.             sslContextBuilder.loadTrustMaterial(null, new TrustSelfSignedStrategy() {
    
15.                 @Override
    
16.                 public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {
    
17.                     return true;
    
18.                 }
    
19.             });
    
20.             SSLConnectionSocketFactory sslConnectionSocketFactory = new SSLConnectionSocketFactory(
    
21.                     sslContextBuilder.build(), SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
    
22. 
    
23.             Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder.<ConnectionSocketFactory>create()
    
24.                     .register("https", sslConnectionSocketFactory)
    
25.                     .build();
    
26. 
    
27.             PoolingHttpClientConnectionManager connectionManager = new PoolingHttpClientConnectionManager(socketFactoryRegistry);
    
28.             client.setConnectionManager(connectionManager);
    
29.         } catch (Exception sslException) {
    
30.             throw Throwables.propagate(sslException);
    
31.         }
    
32.         return client.build().execute(method, context);
    
33.     }
    
34.     throw e;
    
35. }