Allowed to disable ssl verification

JanHolger · JanHolger · commit 4b9bb00908ba · 2020-12-22T09:11:44.000+01:00
diff --git a/src/main/java/org/javawebstack/httpclient/HTTPClient.java b/src/main/java/org/javawebstack/httpclient/HTTPClient.java
@@ -22,6 +22,7 @@ public class HTTPClient {
     private BeforeRequestInterceptor beforeInterceptor;
 
     private boolean debug = false;
+    private boolean sslVerification = true;
 
     public HTTPClient(String baseUrl) {
         this.baseUrl = baseUrl;
@@ -37,6 +38,14 @@ public boolean isDebug(){
         return debug;
     }
 
+    public void setSSLVerification(boolean sslVerification){
+        this.sslVerification = sslVerification;
+    }
+
+    public boolean isSSLVerification(){
+        return this.sslVerification;
+    }
+
     public HTTPClient graphMapper(GraphMapper mapper){
         this.graphMapper = mapper;
         return this;
diff --git a/src/main/java/org/javawebstack/httpclient/HTTPRequest.java b/src/main/java/org/javawebstack/httpclient/HTTPRequest.java
@@ -4,13 +4,14 @@
 import org.javawebstack.httpclient.interceptor.ResponseTransformer;
 import org.javawebstack.querystring.QueryString;
 
+import javax.net.ssl.*;
 import java.io.ByteArrayOutputStream;
 import java.io.IOException;
 import java.io.InputStream;
 import java.io.OutputStream;
-import java.net.HttpURLConnection;
-import java.net.URL;
+import java.net.*;
 import java.nio.charset.StandardCharsets;
+import java.security.cert.X509Certificate;
 import java.util.Base64;
 import java.util.HashMap;
 import java.util.Map;
@@ -162,6 +163,24 @@ public HTTPRequest execute(){
         try{
             URL theUrl = new URL(client.getBaseUrl() + ((path.startsWith("/") || path.startsWith("http://") || path.startsWith("https://")) ? "" : "/") + path + (query.size() > 0 ? "?" + query.toString() : ""));
             conn = (HttpURLConnection) theUrl.openConnection();
+            if(!client.isSSLVerification() && conn instanceof HttpsURLConnection){
+                HttpsURLConnection httpsConn = (HttpsURLConnection) conn;
+                TrustManager[] trustAllCerts = new TrustManager[] {
+                        new X509TrustManager() {
+                            public java.security.cert.X509Certificate[] getAcceptedIssuers() {
+                                return null;
+                            }
+                            public void checkClientTrusted(X509Certificate[] certs, String authType) {
+                            }
+                            public void checkServerTrusted(X509Certificate[] certs, String authType) {
+                            }
+                        }
+                };
+                SSLContext sc = SSLContext.getInstance("SSL");
+                sc.init(null, trustAllCerts, new java.security.SecureRandom());
+                httpsConn.setSSLSocketFactory(sc.getSocketFactory());
+                httpsConn.setHostnameVerifier((hostname, session) -> true);
+            }
             conn.setReadTimeout(client.getTimeout());
             conn.setConnectTimeout(5000);
             conn.setRequestMethod(method);
