四大微博OAuth认证

据说这两天腾讯的服务器出了问题，认证的时候报这样的错：

oauth.signpost.exception.OAuthCommunicationException: Communication with the service provider failed: Not trusted server certificate  

    

Caused by: javax.net.ssl.SSLPeerUnverifiedException: No peer certificate  

oauth.signpost.exception.OAuthCommunicationException: Communication with the service provider failed: Nopeer certificate 
这是因为Https认证被截获导致，Client认为安全失效，很久之前就出现了这个问题了，那时候在WebView上加上下面的代码就可以解决了

public void onReceivedSslError(WebView view, SslErrorHandler handler, SslError error) {    

    

     handler.proceed();  

     

}  

没想到又出现这个问题，于是一翻研究，在stackoverflow.com上找到答案，写了一个自定义类继承SSLSocketFactory

public class SSLSocketFactoryEx extends SSLSocketFactory {  

     SSLContext sslContext = SSLContext.getInstance("TLS");  

     public SSLSocketFactoryEx(KeyStore truststore)  

             throws NoSuchAlgorithmException, KeyManagementException,  

             KeyStoreException, UnrecoverableKeyException {  

     

        super(truststore);  

         TrustManager tm = new X509TrustManager() {  

             public java.security.cert.X509Certificate[] getAcceptedIssuers() {  

                 return null;  

             }  

     

            @Override  

             public void checkClientTrusted(  

                     java.security.cert.X509Certificate[] chain, String authType)  

                     throws java.security.cert.CertificateException {  

             }  

     

            @Override  

             public void checkServerTrusted(  

                     java.security.cert.X509Certificate[] chain, String authType)  

                     throws java.security.cert.CertificateException {

             }       

        };  

         sslContext.init(null, new TrustManager[] { tm }, null);       

    }  

     @Override  

     public Socket createSocket(Socket socket, String host, int port,boolean autoClose) throws IOException, UnknownHostException {       

        return sslContext.getSocketFactory().createSocket(socket, host, port,autoClose);  

    }       

    @Override  

     

    public Socket createSocket() throws IOException {       

        return sslContext.getSocketFactory().createSocket();       

    }       

}  

 调用方法，只要用认证返回的HttpCilent即可。代码：

Java 代码复制内容到剪贴板

     

public HttpClient getNewHttpClient() {       

        try {  

     

            KeyStore trustStore = KeyStore.getInstance(KeyStore.getDefaultType());  

             trustStore.load(null, null); 

            SSLSocketFactory sf = new SSLSocketFactoryEx(trustStore);  

             sf.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);  

     

            HttpParams params = new BasicHttpParams();  

             HttpProtocolParams.setVersion(params, HttpVersion.HTTP_1_1);  

             HttpProtocolParams.setContentCharset(params, HTTP.UTF_8);  

     

            SchemeRegistry registry = new SchemeRegistry();  

             registry.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));  

             registry.register(new Scheme("https", sf, 443));  

     

            ClientConnectionManager ccm = new ThreadSafeClientConnManager(params, registry);  

             return new DefaultHttpClient(ccm, params);  

             } catch (Exception e) {  

                 return new DefaultHttpClient();       

        }       

    }  

 

这样就解决了问题，有网友说把腾讯认证的地址https去掉改成http，那是不可取的做法。

我已经把代码集成到signpost中，如果有需要的同学可自行下载，有不明白或者不好的地方给我评论留言。

源代码下载：http://06peng.com/read.php/60.htm