javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building f-Toy模板网

这篇具有很好参考价值的文章主要介绍了javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building f。希望对大家有所帮助。如果存在错误或未考虑完全的地方，请大家不吝赐教，您也可以点击"举报违法"按钮提交疑问。

原因：这是SSL证书请求问题。

原代码

private String postForAPP1(String token) throws Exception {
        Map<String, Object> param = new HashMap<String, Object>();
        TxnBodyCom txnBodyCom = new TxnBodyCom();
        param.put("txnBodyCom", txnBodyCom);
//        txnCom.setTxnBodyCom(txnBodyCom);
        TxnCommCom txnCommCom = new TxnCommCom();
        txnCommCom.setTRecInPage("1111");
        txnCommCom.setTxnIttChnlCgyCode("1111");
        txnCommCom.setTStsTraceId("=01111");
        txnCommCom.setTPageJump("1111");
        txnCommCom.setTxnIttChnlId("1111111");
        param.put("txnCommCom", txnCommCom);
        JSON.toJSONString(param);

        CloseableHttpClient httpClient = HttpClients.createDefault();
        RequestConfig requestConfig = RequestConfig.custom().setSocketTimeout(300 * 1000)
                .setConnectTimeout(300 * 1000).build();
        // 创建post方式请求对象
        HttpPost post = new HttpPost("https://www.baidu.com:1111");
        post.setConfig(requestConfig);
        // 请求的数据包为raw，设置报文头为Content-Type
        post.addHeader("Content-Type", "application/json;charset=utf-8");
        post.addHeader("C-Tenancy-id", "11111");
        post.addHeader("Connection", "keep-alive");
        post.addHeader("Referer", "https://www.baidu.com:1111");
        post.addHeader("C-Dynamic-Password-Foruser", token);
        post.addHeader("C-App-Id", "11111");

        // 装载参数
        StringEntity postingString = new StringEntity(JSON.toJSONString(param), "utf-8");
        post.setEntity(postingString);
        // 执行请求并拿到结果
        HttpResponse response = null;
        String content = null;
        CloseableHttpClient client = null;
        try {
//            httpClient = buildSSLCloseableHttpClient();
            response = httpClient.execute(post);
            // 判断返回状态是否正常
            int state = response.getStatusLine().getStatusCode();

            // 获取结果实体并返回结果
            org.apache.http.HttpEntity entity = response.getEntity();
            content = EntityUtils.toString(entity);
            return content;
        }  catch (Exception e) {
            e.printStackTrace();
        } finally {
            httpClient.close();
        }
        return null;
    }

报错javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

修改代码：新增一个方法，忽略主机名称验证

/**
 * buildSSLCloseableHttpClient:(设置允许所有主机名称都可以，忽略主机名称验证)
 * @author xbq
 * @return
 * @throws Exception
 */
private static CloseableHttpClient buildSSLCloseableHttpClient() throws Exception {
    SSLContext sslContext = new SSLContextBuilder().loadTrustMaterial(null, new TrustStrategy() {
        // 信任所有
        public boolean isTrusted(X509Certificate[] chain, String authType) throws CertificateException {
            return true;
        }
    }).build();
    // ALLOW_ALL_HOSTNAME_VERIFIER:这个主机名验证器基本上是关闭主机名验证的,实现的是一个空操作，并且不会抛出javax.net.ssl.SSLException异常。
    SSLConnectionSocketFactory sslsf = new SSLConnectionSocketFactory(sslContext, new String[] { "TLSv1.2" }, null,
            SSLConnectionSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
    return HttpClients.custom().setSSLSocketFactory(sslsf).build();
}

在原代码处调用新增的方法文章来源地址https://www.toymoban.com/news/detail-756482.html

private String postForAPP1(String token) throws Exception {
        Map<String, Object> param = new HashMap<String, Object>();
        TxnBodyCom txnBodyCom = new TxnBodyCom();
        param.put("txnBodyCom", txnBodyCom);
//        txnCom.setTxnBodyCom(txnBodyCom);
        TxnCommCom txnCommCom = new TxnCommCom();
        txnCommCom.setTRecInPage("10");
        txnCommCom.setTxnIttChnlCgyCode("111111");
        txnCommCom.setTStsTraceId("1111111");
        txnCommCom.setTPageJump("1");
        txnCommCom.setTxnIttChnlId("1111");
        param.put("txnCommCom", txnCommCom);
        JSON.toJSONString(param);

        CloseableHttpClient httpClient = HttpClients.createDefault();
        RequestConfig requestConfig = RequestConfig.custom().setSocketTimeout(300 * 1000)
                .setConnectTimeout(300 * 1000).build();
        // 创建post方式请求对象
        HttpPost post = new HttpPost("https://www.baudu.com");
        post.setConfig(requestConfig);
        // 请求的数据包为raw，设置报文头为Content-Type
        post.addHeader("Content-Type", "application/json;charset=utf-8");
        post.addHeader("C-Tenancy-id", "1111111");
        post.addHeader("Connection", "keep-alive");
        post.addHeader("Referer", "https://www.baidu.com");
        post.addHeader("C-Dynamic-Password-Foruser", token);
        post.addHeader("C-App-Id", "11111111");

        // 装载参数
        StringEntity postingString = new StringEntity(JSON.toJSONString(param), "utf-8");
        post.setEntity(postingString);
        // 执行请求并拿到结果
        HttpResponse response = null;
        String content = null;
        CloseableHttpClient client = null;
        try {
           //调用新方法
            httpClient = buildSSLCloseableHttpClient();
            response = httpClient.execute(post);
            // 判断返回状态是否正常
            int state = response.getStatusLine().getStatusCode();

            // 获取结果实体并返回结果
            org.apache.http.HttpEntity entity = response.getEntity();
            content = EntityUtils.toString(entity);
            return content;
        }  catch (Exception e) {
            e.printStackTrace();
        } finally {
            httpClient.close();
        }
        return null;
    }

到了这里，关于javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building f的文章就介绍完了。如果您还想了解更多内容，请在右上角搜索TOY模板网以前的文章或继续浏览下面的相关文章，希望大家以后多多支持TOY模板网！