我使用下面的代码来信任所有证书,并且代码在容器化环境中运行,我收到异常,因为访问被拒绝(“javax.net.ssl.SSLPermission”“setDefaultSSLContext”)和在普通 tomcat 服务器上运行的相同代码工作正常
URL destinationURL = null;
SSLContext context = null;
TrustManager[] trustAllCerts = new TrustManager[] { new X509TrustManager() {
@Override
public X509Certificate[] getAcceptedIssuers() {
//return new X509Certificate[1];
return null;
}
@Override
public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
//DO
}
@Override
public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
//DO
}
}
};
try {
context = SSLContext.getInstance("SSL");
context.init(null, trustAllCerts, null);
SSLContext.setDefault(context);
//proxy details here
destinationURL = new URL('url');
HttpsURLConnection.setDefaultSSLSocketFactory(context.getSocketFactory());
HttpsURLConnection.setDefaultHostnameVerifier(new HostnameVerifier() {
public boolean verify(String hostname, SSLSession session) {
return true;
}
});
} catch (Exception e) {
e.printStackTrace();
最佳答案
您可以使用指定的 SSLContext 构建可用于 URL 连接的 socketfactory,不建议更改默认值。
关于java - 访问被拒绝 ("javax.net.ssl.SSLPermission" "setDefaultSSLContext"),我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/64643813/