/*
* Copyright (C) 2014 The AppCan Open Source Project.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Lesser General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Lesser General Public License for more details.
* You should have received a copy of the GNU Lesser General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
*/
package org.zywx.wbpalmstar.platform.certificates;
import android.content.Context;
import android.content.res.AssetManager;
import org.apache.http.conn.ssl.SSLSocketFactory;
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.IOException;
import java.io.InputStream;
import java.net.URL;
import java.security.KeyStore;
import java.util.HashMap;
import javax.net.ssl.HttpsURLConnection;
public class Http {
public static HashMap<String, KeyStore> KEY_STORE = new HashMap<String, KeyStore>();
public static String algorithm = "X509";
public static String keyType = "pkcs12";
/**
* 是否检查https证书为可信机构颁发
*/
private static boolean isCheckTrustCert = false;
private static InputStream getInputStream(String cPath, Context ctx)
throws IOException, FileNotFoundException {
InputStream inStream;
String assertFile = "file:///android_asset/";
String sdcardFile = "/sdcard/";
String wgtFile = "widget/";
String file = "file://";
if (cPath.contains(assertFile)) {
cPath = cPath.substring(assertFile.length());
AssetManager asset = ctx.getAssets();
inStream = asset.open(cPath);
} else if (cPath.contains(sdcardFile)) {
if (cPath.contains(file)) {
cPath = cPath.substring("file://".length());
}
inStream = new FileInputStream(cPath);
} else if (cPath.startsWith(wgtFile)) {
AssetManager asset = ctx.getAssets();
inStream = asset.open(cPath);
} else {
inStream = new FileInputStream(cPath);
}
return inStream;
}
public static HNetSSLSocketFactory getSSLSocketFactoryWithCert(String cPassWord, String cPath, Context ctx) {
InputStream inStream = null;
HNetSSLSocketFactory ssSocketFactory = null;
try {
int index = cPath.lastIndexOf('/');
String keyName = cPath.substring(index);
KeyStore ksP12 = KEY_STORE.get(keyName);
if(null == ksP12){
inStream = getInputStream(cPath, ctx);
ksP12 = KeyStore.getInstance("pkcs12");
ksP12.load(inStream, cPassWord.toCharArray());
KEY_STORE.put(keyName, ksP12);
}
ssSocketFactory = new HNetSSLSocketFactory(ksP12, cPassWord);
} catch (Exception e) {
e.printStackTrace();
ssSocketFactory = getSSLSocketFactory();
}
return ssSocketFactory;
}
public static HNetSSLSocketFactory getSSLSocketFactory() {
HNetSSLSocketFactory ssSocketFactory = null;
try {
KeyStore keyStore = KeyStore.getInstance(keyType);
keyStore.load(null, null);
ssSocketFactory = new HNetSSLSocketFactory(keyStore, null);
} catch (Exception e) {
e.printStackTrace();
}
return ssSocketFactory;
}
public static HttpsURLConnection getHttpsURLConnection(URL url) throws Exception {
HttpsURLConnection mConnection = null;
mConnection = (HttpsURLConnection) url.openConnection();
javax.net.ssl.SSLSocketFactory ssFact = null;
ssFact = Http.getSSLSocketFactory();
((HttpsURLConnection) mConnection).setSSLSocketFactory(ssFact);
if (!isCheckTrustCert()) {
((HttpsURLConnection) mConnection)
.setHostnameVerifier(new HX509HostnameVerifier());
} else {
((HttpsURLConnection) mConnection)
.setHostnameVerifier(SSLSocketFactory.STRICT_HOSTNAME_VERIFIER);
}
return mConnection;
}
public static HttpsURLConnection getHttpsURLConnection(String urlString) throws Exception {
URL url=new URL(urlString);
HttpsURLConnection mConnection = getHttpsURLConnection(url);
return mConnection;
}
public static HttpsURLConnection getHttpsURLConnectionWithCert(URL url,
String cPassWord, String cPath, Context ctx) throws Exception {
HttpsURLConnection mConnection = null;
mConnection = (HttpsURLConnection) url.openConnection();
javax.net.ssl.SSLSocketFactory ssFact = null;
ssFact = Http.getSSLSocketFactoryWithCert(cPassWord, cPath, ctx);
((HttpsURLConnection) mConnection).setSSLSocketFactory(ssFact);
if (!isCheckTrustCert()) {
((HttpsURLConnection) mConnection)
.setHostnameVerifier(new HX509HostnameVerifier());
} else {
((HttpsURLConnection) mConnection)
.setHostnameVerifier(SSLSocketFactory.STRICT_HOSTNAME_VERIFIER);
}
return mConnection;
}
public static boolean isCheckTrustCert() {
return isCheckTrustCert;
}
public static void setCheckTrustCert(boolean isCheckTrustCert) {
Http.isCheckTrustCert = isCheckTrustCert;
}
}