Has anyone got a sample code or utility that will allow a POST request
to be created to a SSL/HTTPS url?
I've spent a few hours googling and got solutions for HTTP and those
that I have found for HTTPs haven't worked.
Dundonald said:Has anyone got a sample code or utility that will allow a POST request
to be created to a SSL/HTTPS url?
I've spent a few hours googling and got solutions for HTTP and those
that I have found for HTTPs haven't worked.
Dundonald said:Has anyone got a sample code or utility that will allow a POST request
to be created to a SSL/HTTPS url?I've spent a few hours googling and got solutions for HTTP and those
that I have found for HTTPs haven't worked.
Here are a small working example:
package october;
import java.io.*;
import java.net.*;
import java.security.cert.*;
import javax.net.ssl.*;
public class HttpsPost {
public static void main(String[] args) throws Exception {
SSLContext sslctx = SSLContext.getInstance("SSL");
sslctx.init(null, new X509TrustManager[] { new MyTrustManager()
}, null);
HttpsURLConnection.setDefaultSSLSocketFactory(sslctx.getSocketFactory());
URL url = new URL("https://www.xxxx.dk/htbin/tell2");
HttpsURLConnection con = (HttpsURLConnection) url.openConnection();
con.setRequestMethod("POST");
con.setDoOutput(true);
PrintStream ps = new PrintStream(con.getOutputStream());
ps.println("f1=abc&f2=xyz");
ps.close();
con.connect();
if (con.getResponseCode() == HttpsURLConnection.HTTP_OK) {
BufferedReader br = new BufferedReader(new
InputStreamReader(con.getInputStream()));
String line;
while((line = br.readLine()) != null) {
System.out.println(line);
}
br.close();
}
con.disconnect();
}
}
class MyTrustManager implements X509TrustManager {
public void checkClientTrusted(X509Certificate[] chain, String
authType) {
}
public void checkServerTrusted(X509Certificate[] chain, String
authType) {
}
public X509Certificate[] getAcceptedIssuers() {
return new X509Certificate[0];
}
}
Arne
Dundonald said:....
Thanks I'll give it a try. Instead of System.out.println(line); what's
the best way of sending the HTML response back to browser?
Arne said:It is in servlet/JSP context ?
Lew said:The examples do not indicate so. The answer for the OP may well be to
go with JEE instead of the JSE approach.
Arne said:????
"send HTML back to browser" indicates that it is JSP or servlet
context.
And the JEE way is the same as the JSE way.
Lew said:The OP's code and original post gave no hint that they were interested
in working with a browser; it was only in a followup that they mentioned
using a browser.
Using JEE, I have never had to manually create an HTTPS socket. The
usual approach, which is what I meant by the "JEE way", is to write a
servlet and mount it in a servlet container. Doing it outside the
container, manually establishing the connection, I call the "JSE way" -
there is no use in the OP's code snippets of any of the JEE SDK.
So, no, they are not the same.
Arne said:Try actually read what has been posted in the thread.
This is HTTP client code not HTTP server code.
browser--(HTTP)--JSP/servlet--(HTTP)--some other web server
You write HTTP client code in JEE exactly the same way as
you do in JSE, because there are no relevant classes
in JEE.
That you have never written such code is not particular
relevant.
Many others have. My guess is that you can find thousands of
code snippets doing so on the net.
This was a little bit special because it was HTTPS and POST.
Lew said:Your points are well taken.
Lew said:Except for one thing - if the person is writing client code, what
browser are they referring to?
browser--(HTTP)--JSP/servlet--(HTTP)--some other web server
^
code here
It is HTTP client to the other web server.
Output can be send back to the browser either as-is or
modified.
The middle part is also a HTTP server, but I will not call
the JSP/servlet that because the server part is in the
container.
Lew said:Aha!
At least that is how I interpreted the code and reference
to browser.
There is always the possibility that I completely
misunderstood everything.
Arne
Dundonald said:Arne I tried your solution and I couldn't get it to work, and to be
honest it was over a few hours ago now since I tried so I can't
remember which one out of the many attempts and error messages I got
today, sorry.
I've done even more googling and came across the jakarta commons
httpclient package (http://jakarta.apache.org/httpcomponents/
httpclient-3.x/) and decided to give that a go. This package handles
both HTTP and HTTPS.
Again I tried it with HTTP and it worked great (see code below). I
then switched to a HTTPS connection and I get an
SSLHandshakeException, top few lines of stack trace here ...
[06/10/07 23:25:32:062 BST] 5d9100f1 SystemErr R Fatal transport
error: unknown certificate
[06/10/07 23:25:32:062 BST] 5d9100f1 SystemErr R
javax.net.ssl.SSLHandshakeException: unknown certificate
So I do some more googling and I read about adding these two lines:
System.setProperty("java.protocol.handler.pkgs",
"com.sun.net.ssl.internal.www.protocol");
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
which I do to the top of the code below and I then get a different
exception - example stack trace top few lines here ...
[06/10/07 23:28:32:562 BST] 69b640f1 WebGroup E SRVE0026E:
[Servlet Error]-[Cipher buffering error in JCE provider IBMJCE]:
java.lang.RuntimeException: Cipher buffering error in JCE provider
IBMJCE
why is it so difficult to connect to SSL?
Dundonald said:Arne I tried your solution and I couldn't get it to work, and to be
honest it was over a few hours ago now since I tried so I can't
remember which one out of the many attempts and error messages I got
today, sorry.
I tested it before posting so it is a working example.
I've done even more googling and came across the jakarta commons
httpclient package (http://jakarta.apache.org/httpcomponents/
httpclient-3.x/) and decided to give that a go. This package handles
both HTTP and HTTPS.
It solves problems with maintaining session and handling
redirects etc..
But for a simple HTTPS it should neither be necessary or
make a difference.
Again I tried it with HTTP and it worked great (see code below). I
then switched to a HTTPS connection and I get an
SSLHandshakeException, top few lines of stack trace here ...[06/10/07 23:25:32:062 BST] 5d9100f1 SystemErr R Fatal transport
error: unknown certificate
[06/10/07 23:25:32:062 BST] 5d9100f1 SystemErr R
javax.net.ssl.SSLHandshakeException: unknown certificate
That sounds as a certificate problem. Exactly what my code was handling.
So I do some more googling and I read about adding these two lines:System.setProperty("java.protocol.handler.pkgs",
"com.sun.net.ssl.internal.www.protocol");
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
Referring directly to com.sun classes should not be necessary.
which I do to the top of the code below and I then get a different
exception - example stack trace top few lines here ...[06/10/07 23:28:32:562 BST] 69b640f1 WebGroup E SRVE0026E:
[Servlet Error]-[Cipher buffering error in JCE provider IBMJCE]:
java.lang.RuntimeException: Cipher buffering error in JCE provider
IBMJCE
IBMJCE ??
Are your working with an IBM Java ?
why is it so difficult to connect to SSL?
It is really not that difficult.
Arne
Dundonald said:Here's an exception that I got from running your code:
java.security.NoSuchAlgorithmException: Algorithm SSL not available
at javax.net.ssl.SunJSSE_b.a(DashoA6275)
at javax.net.ssl.SSLContext.getInstance(DashoA6275)
at october.HttpsPost.main(HttpsPost.java:11)
Exception in thread "main"
Line 11 = SSLContext sslctx = SSLContext.getInstance("SSL");
Dundonaldwrote:
What version of Java ?
You can try the alternatives:
SSLv2
SSLv3
TLS
TLSv1
TLSv1.1
Arne
Dundonald said:no need for alternatives. I was running WSAD IDE using JDK 1.3
with patched on JSSE and JCE jars, and have since changed to netbeans
with JDK 5 and retried your code and it works. Thanks.
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.