android https 绕证书

       之前很长一段时间开发android开发 网络通信都是用的http，后来到了现在的公司，网络通信是https，理论上https比http更加安全，但是公司是自建证书(后来问了一些朋友有的公司为了降低成本都没有买，都是自建证书)，所以通信的过程需要绕开证书(也可以叫做信任证书)，http和https在通信过程中是有一点不一样的，废话不多说直接上源码 我通信这一块用到的是RxAndroid＋RxJava＋OkHttp3，目前比较主流的网络请求框架。

    

import android.util.Log;

import java.security.SecureRandom;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;
import java.util.concurrent.TimeUnit;

import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.SSLSocketFactory;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;

import okhttp3.MediaType;
import okhttp3.OkHttpClient;
import okhttp3.Request;
import okhttp3.RequestBody;
import okhttp3.Response;
import rx.Observable;
import rx.Subscriber;

/**
* Created by mrpanda on 4/5/17.
*/

public class HTTPSRequestUtils {
private static OkHttpClient okHttpClient;
public static final MediaType JSON
= MediaType.parse("application/json; charset=utf-8");

public static Observable<String> getJson(final String path, final String json){
return Observable.create(new Observable.OnSubscribe<String>(){

@Override
public void call(Subscriber<? super String> subscriber) {
if(!subscriber.isUnsubscribed()){
okHttpClient = new OkHttpClient.Builder()
.sslSocketFactory(createSSLSocketFactory())
.hostnameVerifier(new TrustAllHostnameVerifier())
.connectTimeout(60, TimeUnit.SECONDS)
.writeTimeout(100, TimeUnit.SECONDS)
.readTimeout(60, TimeUnit.SECONDS)
.build();
RequestBody requestBody= RequestBody.create(JSON,json);
Request request=new Request.Builder()
.url(path)
.post(requestBody)
.build();
try{
Response response= okHttpClient.newCall(request).execute();
Log.e("response",response.toString());
if(response.isSuccessful()){
subscriber.onNext(response.body().string());
}else{
subscriber.onNext("获取失败!");
}
subscriber.onCompleted();
}catch (Exception e){
e.printStackTrace();

}
}
}
});

}
private static class TrustAllCerts implements X509TrustManager {
@Override
public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {}

@Override
public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {}

@Override
public X509Certificate[] getAcceptedIssuers() {return new X509Certificate[0];}
}
private static class TrustAllHostnameVerifier implements HostnameVerifier {
@Override
public boolean verify(String hostname, SSLSession session) {
return true;
}
}
private static SSLSocketFactory createSSLSocketFactory() {
SSLSocketFactory ssfFactory = null;

try {
SSLContext sc = SSLContext.getInstance("TLS");
sc.init(null,  new TrustManager[] { new TrustAllCerts() }, new SecureRandom());

ssfFactory = sc.getSocketFactory();
} catch (Exception e) {
}

return ssfFactory;
}

}