-
-
Save Jeff-Tian/196bd6a4591c7b828a5b2c47322b214a to your computer and use it in GitHub Desktop.
Trusting self-signed certificates in Android using OkHttp
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
package com.yourname.builder; | |
import org.jetbrains.annotations.NotNull; | |
import javax.net.ssl.HostnameVerifier; | |
import javax.net.ssl.SSLContext; | |
import javax.net.ssl.SSLSession; | |
import javax.net.ssl.SSLSocketFactory; | |
import javax.net.ssl.TrustManager; | |
import javax.net.ssl.X509TrustManager; | |
import okhttp3.OkHttpClient; | |
public class CustomTrust { | |
final static TrustManager[] trustAllCerts = new TrustManager[] {new X509TrustManager() { | |
@Override | |
public void checkClientTrusted(java.security.cert.X509Certificate[] chain, String authType) { | |
} | |
@Override | |
public void checkServerTrusted(java.security.cert.X509Certificate[] chain, String authType) { | |
} | |
@Override | |
public java.security.cert.X509Certificate[] getAcceptedIssuers() { | |
return new java.security.cert.X509Certificate[] {}; | |
} | |
}}; | |
public static OkHttpClient getUnsafeOkHttpClient() { | |
try { | |
// Create a trust manager that does not validate certificate chains | |
// Install the all-trusting trust manager | |
final SSLContext sslContext = SSLContext.getInstance("SSL"); | |
sslContext.init(null, trustAllCerts, new java.security.SecureRandom()); | |
// Create an ssl socket factory with our all-trusting manager | |
final SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory(); | |
OkHttpClient.Builder builder = new OkHttpClient.Builder(); | |
builder.sslSocketFactory(sslSocketFactory, (X509TrustManager) trustAllCerts[0]); | |
builder.hostnameVerifier(getHostnameVerifier()); | |
OkHttpClient okHttpClient = builder.build(); | |
return okHttpClient; | |
} catch (Exception e) { | |
throw new RuntimeException(e); | |
} | |
} | |
@NotNull | |
public static HostnameVerifier getHostnameVerifier() { | |
return new HostnameVerifier() { | |
@Override | |
public boolean verify(String hostname, SSLSession session) { | |
return true; | |
} | |
}; | |
} | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment