Databases
StackOverflow2013
Postsdbo
POAndroidHttpClient need more info. Self-signed SSL. Possible?
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POAndroidHttpClient need more info. Self-signed SSL. Possible?
    primarykey
    data
    text
    <p>There is very little info about AndroidHttpClient, specifically I can't find any good examples. From what I read - I can use this client and it is preconfigured for SSL. I target 2.2+ so it will work for me well.</p> <ol> <li>Is there any good sample on how I use it? Specifically for REST service POST</li> <li>Is there any sample on how to allow self-signed certificate? I don't mind just allow ANY certificate vs importing specific ones into local store.</li> </ol> <p>Thanks!</p> <p><strong>My own answer</strong> (see code below). </p> <ol> <li>I have IIS server with self-signed certificate. I had to go extra step and generate certificate that matches external name, not server name. </li> <li>I use AndroidHttpClient. Supposedly, this client has all "proper" settings for android and supported starting in version 8</li> <li>I create AndroidHttpClient in Application object and share across.</li> <li>I separated code where I inject custom certificate so it is easy to get rid of it later. I noticed it does take time on App startup to load certificate from resources.</li> </ol> <p>My version of Application singleton. See comments on top with details on command lines I used to generate all the stuff. Use same password throughout to make sure it works. PKS file password have to match.</p> <pre><code>import android.net.http.AndroidHttpClient; import android.app.Application; import android.util.Log; import idatt.mobile.android.providers.DBLog; import org.apache.http.conn.ClientConnectionManager; import org.apache.http.conn.scheme.Scheme; import org.apache.http.conn.scheme.SchemeRegistry; import org.apache.http.conn.ssl.SSLSocketFactory; import java.io.InputStream; import java.security.KeyStore; /* To generate PKS: 1. Created cert in IIS7 and then exported as pfx. Follow instruction on SelfSSL: http://www.robbagby.com/iis/self-signed-certificates-on-iis-7-the-easy-way-and-the-most-effective-way/ 1a. Download tool: http://cid-3c8d41bb553e84f5.skydrive.live.com/browse.aspx/SelfSSL 1b. Run: SelfSSL /N:CN=mydomainname /V:1000 /S:1 /P:8081 I use port 8081 on my server 1c. Export from IIS manager to cert.pfx 2. Run command line in SSL to convert file into X.509: openssl pkcs12 -in C:\cert.pfx -out C:\cert.cer -nodes 3. Edit file and delete all except -----BEGIN.... END CERTIFICATE----- IMPORTANT! It was working when I got proper (5) amount of dashes and put tags and data on separate lines 4. use keytool. C:\Java\JDK\bcprov.jar was downloaded separately C:\Users\Ivan&gt;keytool -import -v -trustcacerts -alias key_alias -file C:\cert.cer -keystore C:\mystore.bks -storetype BKS -provider org.bouncycastle.jce.provider.BouncyCastleProvider -providerpath C:\Java\JDK\bcprov.jar -storepass 123456 */ public class MyApplication extends Application { private static final String LOG_TAG = "MyApplication"; private AndroidHttpClient androidHttpClient; @Override public void onCreate() { super.onCreate(); androidHttpClient = createAndroidHttpClient(); } @Override public void onLowMemory() { super.onLowMemory(); shutdownAndroidHttpClient(); } @Override public void onTerminate() { super.onTerminate(); shutdownAndroidHttpClient(); } private AndroidHttpClient createAndroidHttpClient() { Log.d(LOG_TAG,"createAndroidHttpClient"); AndroidHttpClient client = AndroidHttpClient.newInstance("Android"); //This is optional call to inject custom BKS that was created from self-signed certificate client = addCustomCertificate(client); return client; } public AndroidHttpClient getAndroidHttpClient() { return androidHttpClient; } private void shutdownAndroidHttpClient() { if(androidHttpClient!=null &amp;&amp; androidHttpClient.getConnectionManager()!=null) { androidHttpClient.getConnectionManager().shutdown(); } } private AndroidHttpClient addCustomCertificate(AndroidHttpClient client) { SSLSocketFactory sf = SSLSocketFactory.getSocketFactory(); try { InputStream in = getResources().openRawResource(R.raw.home_server); KeyStore trustStore = KeyStore.getInstance("BKS"); trustStore.load(in, "123456".toCharArray()); in.close(); sf = new SSLSocketFactory(trustStore); sf.setHostnameVerifier(SSLSocketFactory.STRICT_HOSTNAME_VERIFIER); } catch (Exception t) { DBLog.InsertError(this, t); } //Lets register our custom factory here client.getConnectionManager().getSchemeRegistry().register(new Scheme("https", sf, 443)); return client; } } </code></pre> <p>Here is how I use this client(I call it in AsyncTask)</p> <pre><code>private String processPOST(String url, String requestData) { String responseData = null; application = (MyApplication)getApplication(); AndroidHttpClient client = application.getAndroidHttpClient(); HttpPost request = new HttpPost(url); try { StringEntity entity = new StringEntity(requestData); entity.setContentType(new BasicHeader(HTTP.CONTENT_TYPE, "application/json")); request.setEntity(entity); ResponseHandler&lt;String&gt; handler = new BasicResponseHandler(); responseData = client.execute(request, handler); } catch (Throwable e) { DBLog.InsertError(ctxt, e); } return responseData; } </code></pre> <p>This combination seems to be 100% working on 2.2 and 2.3 devices. When I was using snippets with DefaultHttpClient I had issues with 2.3.1 timing out on requests (Nexus S)</p>
    singulars
    1. PO
      singulars
      1. PTAnswer
    1. This table or related slice is empty.
    1. PTQuestion
    1. USkatit
    1. USkatit
    plurals
    1. PL
      singulars
      1. LTLinked
    2. PL
      singulars
      1. LTLinked
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PO
      singulars
      1. PTAnswer
    2. PO
      singulars
      1. PTAnswer
    3. PO
      singulars
      1. PTAnswer
    1. VO
      singulars
      1. POAndroidHttpClient need more info. Self-signed SSL. Possible?
      1. This table or related slice is empty.
      1. VTUpMod
    2. VO
      singulars
      1. POAndroidHttpClient need more info. Self-signed SSL. Possible?
      1. USFrVaBe
      1. VTFavorite
    3. VO
      singulars
      1. POAndroidHttpClient need more info. Self-signed SSL. Possible?
      1. USkt3k
      1. VTFavorite
    1. This table or related slice is empty.
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload