As you know, one of usage of file certificate is used to access HTTPS from HTTP. If your current host is HTTPS but you still access using HTTP , so by using file certificate it will be redirecting to HTTPS automatically.
Before you adding file certificate to Retrofit 2.0 make you using OKHTTP 3 for your client. So here is the method that you can use for adding file certificate to Retrofit 2.0 :
First import the following package :
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import java.io.IOException; | |
| import java.io.InputStream; | |
| import java.security.KeyManagementException; | |
| import java.security.KeyStore; | |
| import java.security.KeyStoreException; | |
| import java.security.NoSuchAlgorithmException; | |
| import java.security.cert.Certificate; | |
| import java.security.cert.CertificateException; | |
| import java.security.cert.CertificateFactory; | |
| import javax.net.ssl.SSLContext; | |
| import javax.net.ssl.TrustManagerFactory; | |
| import okhttp3.OkHttpClient; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| private OkHttpClient setClient() { | |
| OkHttpClient.Builder okHttpClient = new OkHttpClient.Builder(); | |
| // loading CAs from an InputStream | |
| CertificateFactory cf = null; | |
| try { | |
| cf = CertificateFactory.getInstance("X.509"); | |
| InputStream cert = MyApplication.getContext().getResources().openRawResource(R.raw.your_file_cert); | |
| Certificate ca; | |
| try { | |
| ca = cf.generateCertificate(cert); | |
| } finally { cert.close(); } | |
| // creating a KeyStore containing our trusted CAs | |
| String keyStoreType = KeyStore.getDefaultType(); | |
| KeyStore keyStore = KeyStore.getInstance(keyStoreType); | |
| keyStore.load(null, null); | |
| keyStore.setCertificateEntry("ca", ca); | |
| // creating a TrustManager that trusts the CAs in our KeyStore | |
| String tmfAlgorithm = TrustManagerFactory.getDefaultAlgorithm(); | |
| TrustManagerFactory tmf = TrustManagerFactory.getInstance(tmfAlgorithm); | |
| tmf.init(keyStore); | |
| // creating an SSLSocketFactory that uses our TrustManager | |
| SSLContext sslContext = SSLContext.getInstance("TLS"); | |
| sslContext.init(null, tmf.getTrustManagers(), null); | |
| // okHttpClient.setSslSocketFactory(sslContext.getSocketFactory()); | |
| okHttpClient.sslSocketFactory(sslContext.getSocketFactory()); | |
| } catch (CertificateException e) { | |
| e.printStackTrace(); | |
| } catch (NoSuchAlgorithmException e) { | |
| e.printStackTrace(); | |
| } catch (KeyStoreException e) { | |
| e.printStackTrace(); | |
| } catch (KeyManagementException e) { | |
| e.printStackTrace(); | |
| } catch (IOException e) { | |
| e.printStackTrace(); | |
| } | |
| return okHttpClient.build(); | |
| } |
2 komentar
i tried with the code but it gives me that host name verifier
JW Marriott Philadelphia Casino - Mandir
Visit JW Marriott 오산 출장샵 Philadelphia Casino and 충청북도 출장마사지 enjoy the latest hotel deals 성남 출장안마 on 문경 출장마사지 Mandir, a Philadelphia 용인 출장안마 hotel, spa, golf and more at JW Marriott Philadelphia.
EmoticonEmoticon