Java tutorial
/* * Copyright 2013-2015 The GDG Frisbee Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package org.gdg.frisbee.android.api; import com.google.api.client.http.HttpMethods; import com.google.api.client.http.HttpTransport; import com.google.api.client.util.Preconditions; import com.google.api.client.util.SecurityUtils; import com.google.api.client.util.SslUtils; import com.squareup.okhttp.OkHttpClient; import com.squareup.okhttp.OkUrlFactory; import java.io.IOException; import java.io.InputStream; import java.net.HttpURLConnection; import java.net.Proxy; import java.net.URL; import java.net.URLConnection; import java.security.GeneralSecurityException; import java.security.KeyStore; import java.util.Arrays; import javax.net.ssl.HostnameVerifier; import javax.net.ssl.SSLContext; import javax.net.ssl.SSLSocketFactory; /** * GDG Aachen * org.gdg.frisbee.android.api * <p/> * User: maui * Date: 27.05.13 * Time: 03:13 */ public class GapiOkTransport extends HttpTransport { /** * All valid request methods as specified in {@link HttpURLConnection#setRequestMethod}, sorted in * ascending alphabetical order. */ private static final String[] SUPPORTED_METHODS = { HttpMethods.DELETE, HttpMethods.GET, HttpMethods.HEAD, HttpMethods.OPTIONS, HttpMethods.POST, HttpMethods.PUT, HttpMethods.TRACE }; static { Arrays.sort(SUPPORTED_METHODS); } /** * HTTP proxy or {@code null} to use the proxy settings from <a * href="http://docs.oracle.com/javase/7/docs/api/java/net/doc-files/net-properties.html">system * properties</a>. */ private final Proxy proxy; /** SSL socket factory or {@code null} for the default. */ private final SSLSocketFactory sslSocketFactory; /** Host name verifier or {@code null} for the default. */ private final HostnameVerifier hostnameVerifier; /** * Constructor with the default behavior. * * <p> * Instead use {@link Builder} to modify behavior. * </p> */ public GapiOkTransport() { this(null, null, null); } /** * @param proxy HTTP proxy or {@code null} to use the proxy settings from <a * href="http://docs.oracle.com/javase/7/docs/api/java/net/doc-files/net-properties.html"> * system properties</a> * @param sslSocketFactory SSL socket factory or {@code null} for the default * @param hostnameVerifier host name verifier or {@code null} for the default */ GapiOkTransport(Proxy proxy, SSLSocketFactory sslSocketFactory, HostnameVerifier hostnameVerifier) { this.proxy = proxy; this.sslSocketFactory = sslSocketFactory; this.hostnameVerifier = hostnameVerifier; } @Override public boolean supportsMethod(String method) { return Arrays.binarySearch(SUPPORTED_METHODS, method) >= 0; } @Override protected GapiOkHttpRequest buildRequest(String method, String url) throws IOException { Preconditions.checkArgument(supportsMethod(method), "HTTP method %s not supported", method); // connection with proxy settings URL connUrl = new URL(url); OkHttpClient client = new OkHttpClient(); OkUrlFactory factory = new OkUrlFactory(client); SSLContext sslContext; try { sslContext = SSLContext.getInstance("TLS"); sslContext.init(null, null, null); } catch (GeneralSecurityException e) { throw new AssertionError(); // The system has no TLS. Just give up. } client.setSslSocketFactory(sslContext.getSocketFactory()); if (proxy != null) { client.setProxy(proxy); } URLConnection conn = factory.open(connUrl); HttpURLConnection connection = (HttpURLConnection) conn; connection.setRequestMethod(method); return new GapiOkHttpRequest(connection); } /** * Builder for {@link GapiOkTransport}. * * <p> * Implementation is not thread-safe. * </p> * * @since 1.13 */ public static final class Builder { /** SSL socket factory or {@code null} for the default. */ private SSLSocketFactory sslSocketFactory; /** Host name verifier or {@code null} for the default. */ private HostnameVerifier hostnameVerifier; /** * HTTP proxy or {@code null} to use the proxy settings from <a * href="http://docs.oracle.com/javase/7/docs/api/java/net/doc-files/net-properties.html">system * properties</a>. */ private Proxy proxy; /** * Sets the HTTP proxy or {@code null} to use the proxy settings from <a * href="http://docs.oracle.com/javase/7/docs/api/java/net/doc-files/net-properties.html">system * properties</a>. * * <p> * For example: * </p> * * <pre> setProxy(new Proxy(Proxy.Type.HTTP, new InetSocketAddress("127.0.0.1", 8080))) * </pre> */ public Builder setProxy(Proxy proxy) { this.proxy = proxy; return this; } /** * Sets the SSL socket factory based on root certificates in a Java KeyStore. * * <p> * Example usage: * </p> * * <pre> trustCertificatesFromJavaKeyStore(new FileInputStream("certs.jks"), "password"); * </pre> * * @param keyStoreStream input stream to the key store (closed at the end of this method in a * finally block) * @param storePass password protecting the key store file * @since 1.14 */ public Builder trustCertificatesFromJavaKeyStore(InputStream keyStoreStream, String storePass) throws GeneralSecurityException, IOException { KeyStore trustStore = SecurityUtils.getJavaKeyStore(); SecurityUtils.loadKeyStore(trustStore, keyStoreStream, storePass); return trustCertificates(trustStore); } /** * Sets the SSL socket factory based root certificates generated from the specified stream using * * <p> * Example usage: * </p> * * <pre> trustCertificatesFromStream(new FileInputStream("certs.pem")); * </pre> * * @param certificateStream certificate stream * @since 1.14 */ public Builder trustCertificatesFromStream(InputStream certificateStream) throws GeneralSecurityException, IOException { KeyStore trustStore = SecurityUtils.getJavaKeyStore(); trustStore.load(null, null); SecurityUtils.loadKeyStoreFromCertificates(trustStore, SecurityUtils.getX509CertificateFactory(), certificateStream); return trustCertificates(trustStore); } /** * Sets the SSL socket factory based on a root certificate trust store. * * @param trustStore certificate trust store (use for example {@link SecurityUtils#loadKeyStore} * or {@link SecurityUtils#loadKeyStoreFromCertificates}) * @since 1.14 */ public Builder trustCertificates(KeyStore trustStore) throws GeneralSecurityException { SSLContext sslContext = SslUtils.getTlsSslContext(); SslUtils.initSslContext(sslContext, trustStore, SslUtils.getPkixTrustManagerFactory()); return setSslSocketFactory(sslContext.getSocketFactory()); } /** * Disables validating server SSL certificates by setting the SSL socket factory using * {@link SslUtils#trustAllSSLContext()} for the SSL context and * {@link SslUtils#trustAllHostnameVerifier()} for the host name verifier. * * <p> * Be careful! Disabling certificate validation is dangerous and should only be done in testing * environments. * </p> */ public Builder doNotValidateCertificate() throws GeneralSecurityException { hostnameVerifier = SslUtils.trustAllHostnameVerifier(); sslSocketFactory = SslUtils.trustAllSSLContext().getSocketFactory(); return this; } /** Returns the SSL socket factory. */ public SSLSocketFactory getSslSocketFactory() { return sslSocketFactory; } /** Sets the SSL socket factory or {@code null} for the default. */ public Builder setSslSocketFactory(SSLSocketFactory sslSocketFactory) { this.sslSocketFactory = sslSocketFactory; return this; } /** Returns the host name verifier or {@code null} for the default. */ public HostnameVerifier getHostnameVerifier() { return hostnameVerifier; } /** Sets the host name verifier or {@code null} for the default. */ public Builder setHostnameVerifier(HostnameVerifier hostnameVerifier) { this.hostnameVerifier = hostnameVerifier; return this; } /** Returns a new instance of {@link GapiOkTransport} based on the options. */ public GapiOkTransport build() { return new GapiOkTransport(proxy, sslSocketFactory, hostnameVerifier); } } }