如何在 Android 上使用基于 SSL 的基本身份验证连接到 Http 服务器?

发布于 2024-10-28 04:55:48 字数 1698 浏览 4 评论 0原文

我知道这个问题以前曾被问过,但我找到的答案都没有帮助我。我正在尝试使用基本 Http 身份验证通过 SSL 连接到简单的登录服务。该服务托管在 https://localhost:8443/login。当我从浏览器(在 Windows、OSX 和 Android 上)访问该服务时,它工作正常,我输入了我的用户名和密码,并且我得到了正确的身份验证。然而,当我尝试通过 Xoom 上的代码执行此操作时,我收到一个 ClientProtocolException,提示“服务器无法使用有效的 HTTP 响应进行响应”。谁能推动我朝正确的方向前进?这是我的代码

        String result = null;

        HttpParams params = new BasicHttpParams();
        HttpProtocolParams.setVersion(params, HttpVersion.HTTP_1_1);
        HttpProtocolParams.setContentCharset(params, HTTP.DEFAULT_CONTENT_CHARSET);
        HttpProtocolParams.setUseExpectContinue(params, true);

        SchemeRegistry schReg = new SchemeRegistry();
        schReg.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));
        schReg.register(new Scheme("https", SSLSocketFactory.getSocketFactory(), 443));
        ClientConnectionManager conMgr = new ThreadSafeClientConnManager(params, schReg);

        DefaultHttpClient client = new DefaultHttpClient(conMgr, params);

        HttpGet get = new HttpGet(preferences.getString(getString(R.string.Security_Login_URL),
        "https://localhost:80/login"));

        String credentials = Base64.encodeToString((username + ":" + password).getBytes(), Base64.URL_SAFE);
        if(credentials!=null){
        get.addHeader("Authorization","Basic "+credentials);
        ResponseHandler responseHandler=new BasicResponseHandler();
        try {
            result = client.execute(get, responseHandler);
        } catch (ClientProtocolException e) {
            e.printStackTrace();
        } catch (IOException e) {
            e.printStackTrace();
        }

I know this question has been asked before but none of the answers I have found are helping me. I am trying to connect to a simple login service over SSL with Basic Http Auth. The service is hosted at https://localhost:8443/login. When I hit the service from a browser (on windows, OSX, and Android) it works fine, I put in my username and password and I am authenticated properly. However, when I try to do this through code on my Xoom I get a ClientProtocolException that says "the server failed to respond with a valid HTTP response". Can anyone give me a push in the right direction? Here is my code

        String result = null;

        HttpParams params = new BasicHttpParams();
        HttpProtocolParams.setVersion(params, HttpVersion.HTTP_1_1);
        HttpProtocolParams.setContentCharset(params, HTTP.DEFAULT_CONTENT_CHARSET);
        HttpProtocolParams.setUseExpectContinue(params, true);

        SchemeRegistry schReg = new SchemeRegistry();
        schReg.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));
        schReg.register(new Scheme("https", SSLSocketFactory.getSocketFactory(), 443));
        ClientConnectionManager conMgr = new ThreadSafeClientConnManager(params, schReg);

        DefaultHttpClient client = new DefaultHttpClient(conMgr, params);

        HttpGet get = new HttpGet(preferences.getString(getString(R.string.Security_Login_URL),
        "https://localhost:80/login"));

        String credentials = Base64.encodeToString((username + ":" + password).getBytes(), Base64.URL_SAFE);
        if(credentials!=null){
        get.addHeader("Authorization","Basic "+credentials);
        ResponseHandler responseHandler=new BasicResponseHandler();
        try {
            result = client.execute(get, responseHandler);
        } catch (ClientProtocolException e) {
            e.printStackTrace();
        } catch (IOException e) {
            e.printStackTrace();
        }

如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。

扫码二维码加入Web技术交流群

发布评论

需要 登录 才能够评论, 你可以免费 注册 一个本站的账号。

评论(1

爱的那么颓废 2024-11-04 04:55:48

两个常见问题可能会导致此问题:

  1. 您不应自行执行 BASIC 身份验证。 Apache HttpClient 具有已包含的用于进行 BASIC 身份验证的所有功能。查看 基本身份验证< /a> 或 抢占式BASIC 身份验证

  2. 您的 Android 设备是否信任来自服务器的证书?当您的浏览器信任该证书时,并不意味着您的设备也信任它。 Android 的可信认证机构列表非常有限。当您使用 Android 内置浏览器访问该网站时,您可以在设备上进行检查。如果没有出现警告消息,则一切正常。有关信任来自 Android 设备的其他证书的更多信息,您可以查看我的 博客文章

享受

Two common problems could cause this:

  1. You should not do the BASIC authentication yourself. The Apache HttpClient has all the functionalities already included to do the BASIC authentication. Look either Basic Authentication or Preemptive BASIC authentication

  2. Does your android device trusts the certificate from the server? When your browser trusts the cert, it doesn't mean that your device is also trusting it. Android has a very limited list of trusted certification authorities. You could check this from your device, when you visit the site on your Android built-in browser. If no warning message appears, everything should be OK. For further information about trusting additional certificates from an android device, you can look at my blog article.

Enjoy

~没有更多了~
我们使用 Cookies 和其他技术来定制您的体验包括您的登录状态等。通过阅读我们的 隐私政策 了解更多相关信息。 单击 接受 或继续使用网站,即表示您同意使用 Cookies 和您的相关数据。
原文