TrustingHttpClient.java example

Explorer

android-channel-master
- app
  - src
    - main
      - java
        com
        commonsware
        cwac
        wakeful
        AlarmReceiver.java
        WakefulIntentService.java
        io
        rapidpro
        androidchannel
        BaseActivity.java
        BootStrapper.java
        CallObserver.java
        CommandRunner.java
        Config.java
        DashboardFragment.java
        GCMIntentService.java
        GCMPingService.java
        HomeActivity.java
        IncomingSMSObserver.java
        Intents.java
        Logger.java
        MessageListFragment.java
        NoGcmFragment.java
        PackageChangeReceiver.java
        RapidPro.java
        RapidProAlarmListener.java
        ResettingFragment.java
        SMSListener.java
        SMSModem.java
        SendMessageService.java
        SettingsActivity.java
        StatusReceiver.java
        SyncService.java
        UnclaimedFragment.java
        UnregisteredFragment.java
        contentprovider
        DBCommandContentProvider.java
        data
        DBCommand.java
        DBCommandHelper.java
        json
        JSON.java
        payload
        Ack.java
        CallLog.java
        ClaimCommand.java
        Command.java
        GCM.java
        MOTextMessage.java
        MTBroadcast.java
        MTTextDelivered.java
        MTTextFailed.java
        MTTextMessage.java
        MTTextSent.java
        QueueingCommand.java
        RegistrationCommand.java
        ReleaseCommand.java
        ResetCommand.java
        StatusCommand.java
        SyncPayload.java
        ui
        FontFitTextView.java
        IconStatus.java
        IconTextView.java
        Typefaces.java
        UpdatingTextView.java
        util
        DateUtil.java
        EasySSLSocketFactory.java
        Http.java
        TrustingHttpClient.java
- packs
  - src
    - io
      - rapidpro
        androidchannel
        SendMessageService.java

/*
 * RapidPro Android Channel - Relay SMS messages where MNO connections aren't practical.
 * Copyright (C) 2014 Nyaruka, UNICEF
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as
 * published by the Free Software Foundation, either version 3 of the
 * License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

package io.rapidpro.androidchannel.util;

import android.content.Context;
import io.rapidpro.androidchannel.R;
import org.apache.http.conn.ClientConnectionManager;
import org.apache.http.conn.scheme.PlainSocketFactory;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.scheme.SchemeRegistry;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.impl.client.DefaultHttpClient;
import org.apache.http.impl.conn.SingleClientConnManager;

import java.io.InputStream;
import java.security.KeyStore;

/**
 * HttpClient that uses our own created trust store
 */
public class TrustingHttpClient extends DefaultHttpClient {

    final Context context;

    public TrustingHttpClient(Context context) {
        this.context = context;
    }

    @Override
    protected ClientConnectionManager createClientConnectionManager() {
        SchemeRegistry registry = new SchemeRegistry();
        registry.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));
        // Register for port 443 our SSLSocketFactory with our keystore
        // to the ConnectionManager
        registry.register(new Scheme("https", newSslSocketFactory(), 443));
        return new SingleClientConnManager(getParams(), registry);
    }

    private SSLSocketFactory newSslSocketFactory() {
        try {
            // Get an instance of the Bouncy Castle KeyStore format
            KeyStore trusted = KeyStore.getInstance("BKS");
            // Get the raw resource, which contains the keystore with
            // your trusted certificates (root and any intermediate certs)
            InputStream in = context.getResources().openRawResource(R.raw.rapidpro_chain);
            try {
                // Initialize the keystore with the provided trusted certificates
                // Also provide the password of the keystore
                trusted.load(in, "secret".toCharArray());
            } finally {
                in.close();
            }
            // Pass the keystore to the SSLSocketFactory. The factory is responsible
            // for the verification of the server certificate.
            SSLSocketFactory sf = new EasySSLSocketFactory(trusted);
            // Hostname verification from certificate
            // http://hc.apache.org/httpcomponents-client-ga/tutorial/html/connmgmt.html#d4e506
            sf.setHostnameVerifier(SSLSocketFactory.STRICT_HOSTNAME_VERIFIER);
            return sf;
        } catch (Exception e) {
            throw new AssertionError(e);
        }
    }
}