#40919 【@Form】Android API29/TrustManager対応

36823d62 · onuma · b7dba9ab · 36823d62 · 36823d62
Commit 36823d62 authored Dec 24, 2020 by onuma
Hide whitespace changes
Inline Side-by-side

Showing with 50 additions and 16 deletions

ABVJE_BL/src/jp/agentec/adf/net/http/AGTX509TrustManager.java
+49 -0

ABVJE_BL/src/jp/agentec/adf/net/http/HttpRequestSender.java
+1 -16

No files found.
--- a/ABVJE_BL/src/jp/agentec/adf/net/http/AGTX509TrustManager.java
+++ b/ABVJE_BL/src/jp/agentec/adf/net/http/AGTX509TrustManager.java
+package jp.agentec.adf.net.http;
+
+import java.security.KeyStore;
+import java.security.KeyStoreException;
+import java.security.NoSuchAlgorithmException;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+
+import javax.net.ssl.TrustManager;
+import javax.net.ssl.TrustManagerFactory;
+import javax.net.ssl.X509TrustManager;
+
+public class AGTX509TrustManager implements X509TrustManager {
+    private X509TrustManager standardTrustManager = null;
+
+    /**
+     * Constructor for EasyX509TrustManager.
+     */
+    public AGTX509TrustManager(KeyStore keystore)
+            throws NoSuchAlgorithmException, KeyStoreException {
+        super();
+        TrustManagerFactory factory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
+        factory.init(keystore);
+        TrustManager[] trustmanagers = factory.getTrustManagers();
+        if (trustmanagers.length == 0) {
+            throw new NoSuchAlgorithmException("no trust manager found");
+        }
+        this.standardTrustManager = (X509TrustManager) trustmanagers[0];
+    }
+
+    @Override
+    public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {
+        standardTrustManager.checkClientTrusted(x509Certificates, s);
+    }
+
+    @Override
+    public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {
+        if ((x509Certificates != null) && (x509Certificates.length == 1)) {
+            x509Certificates[0].checkValidity();
+        } else {
+            standardTrustManager.checkServerTrusted(x509Certificates, s);
+        }
+    }
+
+    @Override
+    public X509Certificate[] getAcceptedIssuers() {
+        return this.standardTrustManager.getAcceptedIssuers();
+    }
+}
--- a/ABVJE_BL/src/jp/agentec/adf/net/http/HttpRequestSender.java
+++ b/ABVJE_BL/src/jp/agentec/adf/net/http/HttpRequestSender.java
@@ -1013,26 +1013,11 @@ public class HttpRequestSender {
 		}
 	};

-	private static TrustManager[] trustAllCerts = new TrustManager[] {
-			new X509TrustManager() {
-	    		@Override
-                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
-	    			return new java.security.cert.X509Certificate[] {};
-	    		}
-	
-	    		@Override
-                public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {}
-	
-	    		@Override
-                public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {}
-	    	}
-	};
-
 	private static void trustAllHosts() {
 		// Install the all-trusting trust manager
 		try {
 			SSLContext sc = SSLContext.getInstance("TLS");
-			sc.init(null, trustAllCerts, new java.security.SecureRandom());
+			sc.init(null, new TrustManager[]{new AGTX509TrustManager(null)}, new java.security.SecureRandom());
 			HttpsURLConnection.setDefaultSSLSocketFactory(sc.getSocketFactory());
 		} catch (Exception e) {
 			throw new ABVRuntimeException(e);