Back to project page custom-cert-https.
The source code is released under:
Apache License
If you think the Android project custom-cert-https listed in this page is inappropriate, such as containing malicious code/tools or violating the copyright, please email info at java2s dot com, thanks.
package org.nick.customcert.https; //w ww. j a va2 s . c o m import java.security.GeneralSecurityException; import java.security.KeyStore; import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import java.util.ArrayList; import java.util.List; import javax.net.ssl.TrustManager; import javax.net.ssl.TrustManagerFactory; import javax.net.ssl.X509TrustManager; import android.util.Log; public class MyTrustManager implements X509TrustManager { private static final String TAG = MyTrustManager.class.getSimpleName(); static class LocalStoreX509TrustManager implements X509TrustManager { private X509TrustManager trustManager; LocalStoreX509TrustManager(KeyStore localTrustStore) { try { TrustManagerFactory tmf = TrustManagerFactory .getInstance(TrustManagerFactory.getDefaultAlgorithm()); tmf.init(localTrustStore); trustManager = findX509TrustManager(tmf); if (trustManager == null) { throw new IllegalStateException( "Couldn't find X509TrustManager"); } } catch (GeneralSecurityException e) { throw new RuntimeException(e); } } @Override public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException { trustManager.checkClientTrusted(chain, authType); } @Override public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException { trustManager.checkServerTrusted(chain, authType); } @Override public X509Certificate[] getAcceptedIssuers() { return trustManager.getAcceptedIssuers(); } } static X509TrustManager findX509TrustManager(TrustManagerFactory tmf) { TrustManager tms[] = tmf.getTrustManagers(); for (int i = 0; i < tms.length; i++) { if (tms[i] instanceof X509TrustManager) { return (X509TrustManager) tms[i]; } } return null; } private X509TrustManager defaultTrustManager; private X509TrustManager localTrustManager; private X509Certificate[] acceptedIssuers; public MyTrustManager(KeyStore localKeyStore) { try { TrustManagerFactory tmf = TrustManagerFactory .getInstance(TrustManagerFactory.getDefaultAlgorithm()); tmf.init((KeyStore) null); defaultTrustManager = findX509TrustManager(tmf); if (defaultTrustManager == null) { throw new IllegalStateException( "Couldn't find X509TrustManager"); } localTrustManager = new LocalStoreX509TrustManager(localKeyStore); List<X509Certificate> allIssuers = new ArrayList<X509Certificate>(); for (X509Certificate cert : defaultTrustManager .getAcceptedIssuers()) { allIssuers.add(cert); } for (X509Certificate cert : localTrustManager.getAcceptedIssuers()) { allIssuers.add(cert); } acceptedIssuers = allIssuers.toArray(new X509Certificate[allIssuers .size()]); } catch (GeneralSecurityException e) { throw new RuntimeException(e); } } public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException { try { Log.d(TAG, "checkServerTrusted() with default trust manager..."); defaultTrustManager.checkClientTrusted(chain, authType); } catch (CertificateException ce) { Log.d(TAG, "checkServerTrusted() with local trust manager..."); localTrustManager.checkClientTrusted(chain, authType); } } public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException { try { Log.d(TAG, "checkServerTrusted() with default trust manager..."); defaultTrustManager.checkServerTrusted(chain, authType); } catch (CertificateException ce) { Log.d(TAG, "checkServerTrusted() with local trust manager..."); localTrustManager.checkServerTrusted(chain, authType); } } public X509Certificate[] getAcceptedIssuers() { return acceptedIssuers; } }