MblSSLCertificateUtils.java example

Explorer

mobilib-master
- Mobilib
  - src
    - com
      - datdo
        mobilib
        adapter
        MblUniversalAdapter.java
        MblUniversalItem.java
        MblUniversalMultipartItem.java
        MblUniversalSinglePartItem.java
        api
        MblApi.java
        MblException.java
        MblRequest.java
        MblResponse.java
        MblSSLCertificateUtils.java
        base
        MblActivityPlugin.java
        MblBaseActionBarActivity.java
        MblBaseActivity.java
        MblBaseAdapter.java
        MblBaseApplication.java
        MblBaseFragment.java
        MblBaseFragmentActivity.java
        MblBluetoothStatusChangedReceiver.java
        MblDecorView.java
        MblNetworkStatusChangedReceiver.java
        cache
        MblCacheMaster.java
        MblDatabaseCache.java
        MblIDConverter.java
        MblMemCache.java
        MblPendingCacheMaster.java
        carrier
        MblCarrier.java
        MblInterceptor.java
        MblSlidingCarrier.java
        db
        DBBase.java
        DBHelper.java
        event
        MblCommonEvents.java
        MblEventCenter.java
        MblEventListener.java
        MblStrongEventListener.java
        MblWeakArrayList.java
        util
        MblAsyncTask.java
        MblImageLoader.java
        MblLinkMovementMethod.java
        MblLinkRecognizer.java
        MblSerializer.java
        MblSimpleImageLoader.java
        MblUtils.java
        MblViewUtil.java
        widget
        MblFlexibleSizedImageView.java
        MblHorizontalViewPager.java
        MblListViewWithScrollableItems.java
        MblSequenceImage.java
        MblSideMenuEnabledLayout.java
        MblSwitch.java
        MblTouchImageView.java
        MblYieldLayout.java
- MobilibImageInput
  - src
    - com
      - datdo
        mobilib
        imageinput
        MblAutoResizeSquareImageView.java
        MblDataInputActivity.java
        MblImageFolderScanner.java
        MblImageInput.java
        MblImagePickingScanEngine.java
        MblPickImageActivity.java
        MblPickImageGridViewAdapter.java
        MblTakeImageActivity.java
- MobilibTest
  - src
    - com
      - datdo
        mobilib
        test
        MainActivity.java
        MobilibTestApplication.java
        UnitTest.java
        asynctask
        AsyncTaskTestActivity.java
        cache
        CacheMasterTestActivity.java
        carrier
        CarrierTestActivity.java
        Interceptor1.java
        Interceptor2.java
        Interceptor3.java
        Interceptor4.java
        commonevents
        CommonEventsTestActivity.java
        imageinput
        ImageInputTestActivity.java
        ThumbnailAdapter.java
        imageloader
        ImageLoaderTestActivity.java
        ViewImageActivity.java
        urlrecognizer
        UrlRecognizerTestActivity.java
        utils
        BgNoShrinkingTestActivity.java
        EditTextAutoscrollTestActivity.java
        UtilsTestActivity.java

package com.datdo.mobilib.api;

import java.io.IOException;
import java.net.Socket;
import java.net.UnknownHostException;
import java.security.KeyManagementException;
import java.security.KeyStore;
import java.security.KeyStoreException;
import java.security.NoSuchAlgorithmException;
import java.security.UnrecoverableKeyException;
import java.security.cert.CertificateException;
import java.security.cert.X509Certificate;

import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;

import org.apache.http.HttpVersion;
import org.apache.http.client.HttpClient;
import org.apache.http.conn.ClientConnectionManager;
import org.apache.http.conn.scheme.PlainSocketFactory;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.scheme.SchemeRegistry;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.impl.client.DefaultHttpClient;
import org.apache.http.impl.conn.tsccm.ThreadSafeClientConnManager;
import org.apache.http.params.BasicHttpParams;
import org.apache.http.params.HttpParams;
import org.apache.http.params.HttpProtocolParams;
import org.apache.http.protocol.HTTP;

import android.annotation.SuppressLint;

class MblSSLCertificateUtils {

    @SuppressLint("DefaultLocale")
    public static boolean isHttpsUrl(String url) {
        return url != null && url.toLowerCase().startsWith("https");
    }

    public static HttpClient getHttpClientIgnoreSSLCertificate() {
        try {
            KeyStore trustStore = KeyStore.getInstance(KeyStore.getDefaultType());
            trustStore.load(null, null);

            SSLSocketFactory sf = new MySSLSocketFactory(trustStore);
            sf.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);

            HttpParams params = new BasicHttpParams();
            HttpProtocolParams.setVersion(params, HttpVersion.HTTP_1_1);
            HttpProtocolParams.setContentCharset(params, HTTP.UTF_8);

            SchemeRegistry registry = new SchemeRegistry();
            registry.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));
            registry.register(new Scheme("https", sf, 443));

            ClientConnectionManager ccm = new ThreadSafeClientConnManager(params, registry);

            return new DefaultHttpClient(ccm, params);
        } catch (Exception e) {
            return new DefaultHttpClient();
        }
    }

    // reference: http://stackoverflow.com/questions/1201048/allowing-java-to-use-an-untrusted-certificate-for-ssl-https-connection
    public static javax.net.ssl.SSLSocketFactory getSSLSocketFactoryIgnoreSSLCertificate() {
        // Create a trust manager that does not validate certificate chains
        TrustManager[] trustAllCerts = new TrustManager[]{
                new X509TrustManager() {
                    public java.security.cert.X509Certificate[] getAcceptedIssuers() {
                        return null;
                    }
                    public void checkClientTrusted(
                            java.security.cert.X509Certificate[] certs, String authType) {
                    }
                    public void checkServerTrusted(
                            java.security.cert.X509Certificate[] certs, String authType) {
                    }
                }
        };

        // Install the all-trusting trust manager
        try {
            SSLContext sc = SSLContext.getInstance("SSL");
            sc.init(null, trustAllCerts, new java.security.SecureRandom());
            return sc.getSocketFactory();
        } catch (Exception ignored) {
            return null;
        }
    }

    // reference: http://stackoverflow.com/questions/875467/java-client-certificates-over-https-ssl
    public static HostnameVerifier getHostnameVerifierIgnoreSSLCertificate() {
        // Ignore differences between given hostname an d certificate hostname
        HostnameVerifier hv = new HostnameVerifier() {
            public boolean verify(String hostname, SSLSession session) { return true; }
        };
        return hv;
    }

    private static class MySSLSocketFactory extends SSLSocketFactory {
        SSLContext sslContext = SSLContext.getInstance("TLS");

        public MySSLSocketFactory(KeyStore truststore) throws NoSuchAlgorithmException, KeyManagementException, KeyStoreException, UnrecoverableKeyException {
            super(truststore);

            TrustManager tm = new X509TrustManager() {
                public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
                }

                public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
                }

                public X509Certificate[] getAcceptedIssuers() {
                    return null;
                }
            };

            sslContext.init(null, new TrustManager[] { tm }, null);
        }

        @Override
        public Socket createSocket(Socket socket, String host, int port, boolean autoClose) throws IOException, UnknownHostException {
            return sslContext.getSocketFactory().createSocket(socket, host, port, autoClose);
        }

        @Override
        public Socket createSocket() throws IOException {
            return sslContext.getSocketFactory().createSocket();
        }
    }
}