lywsvip/pay-java-parent
1
0
Fork 0
mirror of https://gitee.com/egzosn/pay-java-parent.git synced 2026-06-02 22:12:43 +08:00
Code Issues Packages Projects Releases Wiki Activity

HTTPS SSL实现

Browse Source
This commit is contained in:
egan
2017-09-23 23:05:00 +08:00
parent 089836bf2f
commit 861da0da6f
5 changed files with 206 additions and 107 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
pay-java-common/src/main/java/com/egzosn/pay/common/http/HttpConfigStorage.java
View File

@@ -19,6 +19,11 @@ public class HttpConfigStorage {
//代理密码
protected String httpProxyPassword;
//https请求所需的证书PKCS12地址请使用绝对路径
private String keystorePath;
//证书对应的密码
private String storePassword;
/**
* http代理地址
@@ -68,5 +73,27 @@ public class HttpConfigStorage {
this.httpProxyPassword = httpProxyPassword;
}
/**
* https请求所需的证书PKCS12地址请使用绝对路径
* @return 证书PKCS12地址
*/
public String getKeystorePath() {
return keystorePath;
}
public void setKeystorePath(String keystorePath) {
this.keystorePath = keystorePath;
}
/**
* 证书对应的密码
* @return 密码
*/
public String getStorePassword() {
return storePassword;
}
public void setStorePassword(String storePassword) {
this.storePassword = storePassword;
}
}

130
pay-java-common/src/main/java/com/egzosn/pay/common/http/HttpRequestTemplate.java
View File

@@ -7,21 +7,27 @@ import org.apache.http.auth.AuthScope;
import org.apache.http.auth.UsernamePasswordCredentials;
import org.apache.http.client.CredentialsProvider;
import org.apache.http.client.methods.CloseableHttpResponse;
import org.apache.http.conn.ssl.DefaultHostnameVerifier;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.impl.client.BasicCredentialsProvider;
import org.apache.http.impl.client.CloseableHttpClient;
import org.apache.http.impl.client.HttpClients;
import org.apache.http.ssl.SSLContexts;
import javax.net.ssl.SSLContext;
import java.io.File;
import java.io.FileInputStream;
import java.io.IOException;
import java.net.URI;
import java.security.*;
import java.util.Map;
/**
* http请求工具
* @author: egan
* <pre>
* email egzosn@gmail.com
* <code>
* email egzosn@gmail.com <br/>
* date 2017/3/3 21:33
* </pre>
* </code>
*/
public class HttpRequestTemplate {
@@ -29,6 +35,10 @@ public class HttpRequestTemplate {
protected HttpHost httpProxy;
/**
* 获取代理带代理地址的 HttpHost
* @return 获取代理带代理地址的 HttpHost
*/
public HttpHost getHttpProxy() {
return httpProxy;
}
@@ -37,6 +47,10 @@ public class HttpRequestTemplate {
return httpClient;
}
/**
* 初始化
* @param configStorage 请求配置
*/
public HttpRequestTemplate(HttpConfigStorage configStorage) {
setHttpConfigStorage(configStorage);
}
@@ -45,39 +59,92 @@ public class HttpRequestTemplate {
setHttpConfigStorage(null);
}
/**
* 创建ssl配置
* @param configStorage 请求配置
* @return SSLConnectionSocketFactory Layered socket factory for TLS/SSL connections.
*/
public SSLConnectionSocketFactory createSSL( HttpConfigStorage configStorage){
if (StringUtils.isEmpty(configStorage.getKeystorePath()) || StringUtils.isEmpty(configStorage.getKeystorePath())){
return null;
}
//读取本机存放的PKCS12证书文件
try(FileInputStream instream = new FileInputStream(new File(configStorage.getKeystorePath()))){
//指定读取证书格式为PKCS12
KeyStore keyStore = KeyStore.getInstance("PKCS12");
char[] password = configStorage.getStorePassword().toCharArray();
//指定PKCS12的密码
keyStore.load(instream, password);
SSLContext sslcontext = SSLContexts.custom()
.loadKeyMaterial(keyStore, password).build();
//指定TLS版本
SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(
sslcontext, new String[]{"TLSv1"}, null,
new DefaultHostnameVerifier());
return sslsf;
} catch (IOException e) {
e.printStackTrace();
} catch (GeneralSecurityException e) {
e.printStackTrace();
}
return null;
}
/**
* 创建代理服务器
* @param configStorage 请求配置
* @return 代理服务器配置
*/
public CredentialsProvider createProxy(HttpConfigStorage configStorage){
if (StringUtils.isBlank(configStorage.getHttpProxyHost())) {
return null;
}
//http代理地址设置
httpProxy = new HttpHost(configStorage.getHttpProxyHost(), configStorage.getHttpProxyPort());
if (StringUtils.isNotBlank(configStorage.getHttpProxyHost())) {
return null;
}
// 需要用户认证的代理服务器
CredentialsProvider credsProvider = new BasicCredentialsProvider();
credsProvider.setCredentials(
new AuthScope(configStorage.getHttpProxyHost(), configStorage.getHttpProxyPort()),
new UsernamePasswordCredentials(configStorage.getHttpProxyUsername(), configStorage.getHttpProxyPassword()));
return credsProvider;
}
/**
* 设置HTTP请求的配置
*
* @param configStorage 请求配置
* @return 当前HTTP请求的客户端模板
*/
public HttpRequestTemplate setHttpConfigStorage(HttpConfigStorage configStorage){
public HttpRequestTemplate setHttpConfigStorage(HttpConfigStorage configStorage) {
if (null == configStorage){
if (null == configStorage) {
httpClient = HttpClients.createDefault();
return this;
}
httpClient = HttpClients
.custom()
//设置代理
.setDefaultCredentialsProvider(createProxy(configStorage))
//设置httpclient的SSLSocketFactory
.setSSLSocketFactory(createSSL(configStorage))
.build();
if (StringUtils.isNotBlank(configStorage.getHttpProxyHost())) {
// 使用代理服务器
if (StringUtils.isNotBlank(configStorage.getHttpProxyUsername())) {
// 需要用户认证的代理服务器
CredentialsProvider credsProvider = new BasicCredentialsProvider();
credsProvider.setCredentials(
new AuthScope(configStorage.getHttpProxyHost(), configStorage.getHttpProxyPort()),
new UsernamePasswordCredentials(configStorage.getHttpProxyUsername(), configStorage.getHttpProxyPassword()));
httpClient = HttpClients
.custom()
.setDefaultCredentialsProvider(credsProvider)
.build();
} else {
// 无需用户认证的代理服务器
httpClient = HttpClients.createDefault();
}
httpProxy = new HttpHost(configStorage.getHttpProxyHost(), configStorage.getHttpProxyPort());
} else {
httpClient = HttpClients.createDefault();
}
return this;
}
@@ -132,10 +199,13 @@ public class HttpRequestTemplate {
* @param <T> 响应类型
* @return 类型对象
* <code>
* Map&lt;String, String&gt; uriVariables = new HashMap&lt;String, String&gt;();
* uriVariables.put(&quot;id&quot;, &quot;1&quot;);
* uriVariables.put(&quot;type&quot;, &quot;APP&quot;);
* getForObject(&quot;http://egan.in/pay/{id}/f/{type}&quot;, String.class, uriVariables)
* Map&lt;String, String&gt; uriVariables = new HashMap&lt;String, String&gt;();<br/>
*
* uriVariables.put(&quot;id&quot;, &quot;1&quot;);<br/>
*
* uriVariables.put(&quot;type&quot;, &quot;APP&quot;);<br/>
*
* getForObject(&quot;http://egan.in/pay/{id}/f/{type}&quot;, String.class, uriVariables)<br/>
* </code>
*/
public <T> T getForObject(String uri, Class<T> responseType, Map<String, ?> uriVariables){

23
pay-java-demo/src/main/java/com/egzosn/pay/demo/entity/ApyAccount.java
View File

@@ -40,6 +40,13 @@ public class ApyAccount {
// 收款账号
// @Column(name = "seller")
private String seller;
//请求证书地址,请使用绝对路径
private String keystorePath;
//证书对应的密码
private String storePassword;
// 签名类型
// @Column(name = "sign_type")
private String signType;
@@ -156,6 +163,22 @@ public class ApyAccount {
return isTest;
}
public String getKeystorePath() {
return keystorePath;
}
public void setKeystorePath(String keystorePath) {
this.keystorePath = keystorePath;
}
public String getStorePassword() {
return storePassword;
}
public void setStorePassword(String storePassword) {
this.storePassword = storePassword;
}
public void setTest(boolean test) {
isTest = test;
}

14
pay-java-demo/src/main/java/com/egzosn/pay/demo/service/PayResponse.java
View File

@@ -57,12 +57,14 @@ public class PayResponse {
}
/**
* 获取http配置如果配置为null则为默认配置无代理。
* 此处非必需
* @return
* 获取http配置如果配置为null则为默认配置无代理,无证书的请求方式
* 此处非必需
* @param apyAccount 账户信息
* @return 请求配置
*/
public HttpConfigStorage getHttpConfigStorage(){
public HttpConfigStorage getHttpConfigStorage(ApyAccount apyAccount){
HttpConfigStorage httpConfigStorage = new HttpConfigStorage();
/*
//http代理地址
httpConfigStorage.setHttpProxyHost("192.168.1.69");
//代理端口
@@ -71,6 +73,10 @@ public class PayResponse {
httpConfigStorage.setHttpProxyUsername("user");
//代理密码
httpConfigStorage.setHttpProxyPassword("password");
*/
httpConfigStorage.setKeystorePath(apyAccount.getKeystorePath());
httpConfigStorage.setStorePassword(apyAccount.getStorePassword());
return httpConfigStorage;
}

119
pom.xml
View File

@@ -103,74 +103,18 @@
<url>https://oss.sonatype.org/service/local/staging/deploy/maven2/</url>
</repository>
</distributionManagement>
<profiles>
<profile>
<id>release</id>
<build>
<plugins>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-source-plugin</artifactId>
<version>2.2.1</version>
<executions>
<execution>
<id>attach-sources</id>
<goals>
<goal>jar-no-fork</goal>
</goals>
</execution>
</executions>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-javadoc-plugin</artifactId>
<version>2.9.1</version>
<executions>
<execution>
<id>attach-javadocs</id>
<goals>
<goal>jar</goal>
</goals>
</execution>
</executions>
<configuration>
<charset>UTF-8</charset>
<locale>zh_CN</locale>
</configuration>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-gpg-plugin</artifactId>
<version>1.6</version>
<executions>
<execution>
<id>sign-artifacts</id>
<phase>verify</phase>
<goals>
<goal>sign</goal>
</goals>
</execution>
</executions>
</plugin>
</plugins>
</build>
</profile>
</profiles>
<build>
<pluginManagement>
<plugins>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-surefire-plugin</artifactId>
<version>2.17</version>
</plugin>
</plugins>
</pluginManagement>
<plugins>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-compiler-plugin</artifactId>
<configuration>
<source>1.7</source>
<target>1.7</target>
<encoding>utf-8</encoding>
</configuration>
</plugin>
<!-- <plugin>
<groupId>org.sonatype.plugins</groupId>
<artifactId>nexus-staging-maven-plugin</artifactId>
<version>1.6.3</version>
@@ -186,7 +130,7 @@
<artifactId>maven-release-plugin</artifactId>
<version>2.5.1</version>
<configuration>
<autoVersionSubmodules>true</autoVersionSubmodules>
<autoVersionSubmodules>false</autoVersionSubmodules>
<useReleaseProfile>false</useReleaseProfile>
<releaseProfiles>release</releaseProfiles>
<goals>deploy</goals>
@@ -194,14 +138,43 @@
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-compiler-plugin</artifactId>
<version>2.3.2</version>
<configuration>
<source>1.7</source>
<target>1.7</target>
<encoding>UTF-8</encoding>
</configuration>
<artifactId>maven-javadoc-plugin</artifactId>
<version>2.10.3</version>
<executions>
<execution>
<id>attach-javadocs</id>
<goals>
<goal>jar</goal>
</goals>
</execution>
</executions>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-source-plugin</artifactId>
<executions>
<execution>
<id>attach-sources</id>
<goals>
<goal>jar-no-fork</goal>
</goals>
</execution>
</executions>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-gpg-plugin</artifactId>
<version>1.6</version>
<executions>
<execution>
<id>sign-artifacts</id>
<phase>verify</phase>
<goals>
<goal>sign</goal>
</goals>
</execution>
</executions>
</plugin>-->
</plugins>
</build>
</project>