我正在尝试使用 HtmlUnit(Java 库)登录网站,但遇到了一个我认为可以忽略的异常。异常是“javax.net.ssl.SSLPeerUnverifiedException:对等体未通过身份验证”。我已将其缩小到证书支持“www.thesite.com”,但它确实使用“somedomain.thesite.com”。我认为错误是由于证书没有命名它在某些 javascript 函数中使用的其他子域。这很奇怪,因为当我手动使用 Firefox 时,我没有看到这些异常,让我觉得还有其他事情正在发生。
下面是我使用的代码:
// <editor-fold desc="User Credentials and site.">
String user = "auser";
String password = "apassword";
String mainUrl = "https://www.awebsite.com/";
// Setup Ajax & Cookies
AjaxController ajaxController = new AjaxController();
CookieManager cookieManager = new CookieManager();
cookieManager.setCookiesEnabled(true);
// Setup WebClient
WebClient webClient = new WebClient(BrowserVersion.FIREFOX_3_6);
webClient.setAppletEnabled(true);
webClient.setCssEnabled(true);
webClient.setJavaScriptEnabled(true);
webClient.setAjaxController(ajaxController);
webClient.setThrowExceptionOnScriptError(false);
webClient.setThrowExceptionOnFailingStatusCode(false);
webClient.setCookieManager(cookieManager);
/*
* Provider p = new sun.security.pkcs11.SunPKCS11();
* Security.addProvider(p);
*/
//webClient.set
HtmlPage page = null;
try {
webClient.setUseInsecureSSL(true);
page = webClient.getPage(mainUrl);
// fill in form
HtmlForm htmlForm = page.getFormByName("thisForm");
HtmlInput userField = htmlForm.getInputByName("Username");
HtmlInput passwordField = htmlForm.getInputByName("Password");
// Enter login and password
userField.setValueAttribute(user);
passwordField.setValueAttribute(password);
//HtmlPage mainMenuPage = htmlForm.click();
HtmlElement element = htmlForm.getInputByValue("Login");
page = element.click();
webClient.waitForBackgroundJavaScript(5000); // pause if
System.err.println(page.asText());
System.err.println(page.asXml());
} catch (Exception ex) {
ex.printStackTrace();
}
webClient.closeAllWindows();
如您所见,我启用了“webClient.setUseInsecureSSL(true);”在 HtmlUnit 库中。我认为这应该做到。但是,此时我卡住了。
这是我得到的异常错误:
javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:352)
at org.apache.http.conn.ssl.AbstractVerifier.verify(AbstractVerifier.java:128)
at org.apache.http.conn.ssl.SSLSocketFactory.connectSocket(SSLSocketFactory.java:397)
at org.apache.http.impl.conn.DefaultClientConnectionOperator.openConnection(DefaultClientConnectionOperator.java:148)
at org.apache.http.impl.conn.AbstractPoolEntry.open(AbstractPoolEntry.java:149)
at org.apache.http.impl.conn.AbstractPooledConnAdapter.open(AbstractPooledConnAdapter.java:121)
at org.apache.http.impl.client.DefaultRequestDirector.tryConnect(DefaultRequestDirector.java:573)
at org.apache.http.impl.client.DefaultRequestDirector.execute(DefaultRequestDirector.java:425)
at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:820)
at org.apache.http.impl.client.AbstractHttpClient.execute(AbstractHttpClient.java:776)
at com.gargoylesoftware.htmlunit.HttpWebConnection.getResponse(HttpWebConnection.java:152)
at com.gargoylesoftware.htmlunit.WebClient.loadWebResponseFromWebConnection(WebClient.java:1439)
at com.gargoylesoftware.htmlunit.WebClient.loadWebResponse(WebClient.java:1358)
at com.gargoylesoftware.htmlunit.WebClient.getPage(WebClient.java:307)
at com.gargoylesoftware.htmlunit.WebClient.getPage(WebClient.java:373)
at com.gargoylesoftware.htmlunit.WebClient.getPage(WebClient.java:358)
at com.mycompany.extract.Program.main(Program.java:62)
有什么想法或建议吗?出现此错误后程序根本无法继续,我也不在乎证书是否损坏(它是有效证书,只是使用不同的子域),证书不在我的控制范围内。
最佳答案
问题是您需要该子域的有效证书。获取它,并将其添加到您正在使用的 Java 版本中的 jssecacerts。
我使用 InstallCert.java 完成了这项工作。这里有一些有用的文档:http://miteff.com/install-cert可能在这里:http://pinchii.com/home/tag/jssecacerts/
在谷歌上简单搜索“InstallCert.java”应该会给你很多结果。
祝你好运!
关于java - 收到异常 "SSLPeerUnverifiedException: peer not authenticated",我该如何避免/忽略它?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/10143111/