Package com.bazaarvoice.cms.client.jersey

Source Code of com.bazaarvoice.cms.client.jersey.JerseyClientFactory

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
package com.bazaarvoice.cms.client.jersey;

import com.bazaarvoice.cms.client.CmsClientConfig;
import com.sun.jersey.api.client.Client;
import com.sun.jersey.api.client.config.ClientConfig;
import com.sun.jersey.api.client.config.DefaultClientConfig;
import com.sun.jersey.api.json.JSONConfiguration;
import com.sun.jersey.client.urlconnection.HTTPSProperties;

import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLSession;
import javax.net.ssl.TrustManager;
import javax.net.ssl.X509TrustManager;
import java.security.SecureRandom;
import java.security.cert.X509Certificate;

public class JerseyClientFactory {

    public static Client createClient(CmsClientConfig config) {
        ClientConfig clientConfig = new DefaultClientConfig();
        clientConfig.getFeatures().put(JSONConfiguration.FEATURE_POJO_MAPPING, true);
        clientConfig.getProperties().put(ClientConfig.PROPERTY_CONNECT_TIMEOUT, config.getConnectTimeout());
        clientConfig.getProperties().put(ClientConfig.PROPERTY_READ_TIMEOUT, config.getReadTimeout());

        if (config.isDisableCertAndHostValidation()) {
            configureClientToBeInsecure(clientConfig);
        }
        return Client.create(clientConfig);
    }

    private static void configureClientToBeInsecure(ClientConfig config) {
        try {
            config.getProperties().put(HTTPSProperties.PROPERTY_HTTPS_PROPERTIES, new HTTPSProperties(new EveryoneHostnameVerifier(), getInsecureSSLContext()));
        } catch (Exception e) {
            throw new IllegalStateException("Exception setting up insecure client config", e);
        }
    }

    private static SSLContext getInsecureSSLContext() throws Exception {
        // Create a trust manager that does not validate certificate chains
        TrustManager[] trustAllCerts = new TrustManager[] {new X509TrustManager() {
            public X509Certificate[] getAcceptedIssuers() {
                return null;
            }

            public void checkClientTrusted(X509Certificate[] certs, String authType) {
            }

            public void checkServerTrusted(X509Certificate[] certs, String authType) {
            }
        }};

        // Install the all-trusting trust manager
        SSLContext sc = SSLContext.getInstance("TLS");
        sc.init(null, trustAllCerts, new SecureRandom());
        return sc;
    }

    private static class EveryoneHostnameVerifier implements HostnameVerifier {
        @Override
        public boolean verify(String s, SSLSession sslSession) {
            return true;
        }
    }
}
TOP

Related Classes of com.bazaarvoice.cms.client.jersey.JerseyClientFactory

  • com.sun.jersey.api.client.config.ClientConfig
  • com.sun.jersey.api.client.config.DefaultClientConfig
  • com.sun.jersey.client.urlconnection.HTTPSProperties
  • javax.net.ssl.X509TrustManager
  • javax.net.ssl.SSLContext
  • java.security.SecureRandom
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.