CertificateException:使用OAuth2RestTemplate NOT RestTemplate找不到与localhost匹配的名称

时间:2017-11-02 13:35:57

标签: ssl spring-boot oauth resttemplate oauth2resttemplate

我正在尝试使用OAuth2RestTemplate访问自签名证书以通过HTTPS检索令牌,但我仍然收到此错误:

  

javax.net.ssl.SSLHandshakeException:   java.security.cert.CertificateException:没有与localhost匹配的名称   结果

这是我的单元测试,它抛出错误:

    public class OAuth2ClientTest {

    private static final Logger logger = LoggerFactory
            .getLogger(SecurityConfig.class);

    @Value("${oauth.resource:https://localhost:8443}")
    private String baseUrl;

    @Value("${oauth.token:https://localhost:8443/oauth/token}")
    private String tokenUrl;

    @Value("${oauth.resource.id:microservice-test}")
    private String resourceId;

    @Value("${oauth.resource.client.id:client1}")
    private String resourceClientId;

    @Value("${oauth.resource.client.secret:changit}")
    private String resourceClientSecret;



    @Test
    public void execute_post_to_tokenUrl()
            throws ClientProtocolException, IOException {

        OAuth2RestTemplate template = template();

        ResponseEntity<String> response = template.exchange(
                tokenUrl,
                HttpMethod.POST,
                null,
                String.class);

        assertThat(response.getStatusCode().value(), equalTo(200));
    }

    private OAuth2RestTemplate template(){
        ResourceOwnerPasswordResourceDetails resource = new ResourceOwnerPasswordResourceDetails();
        resource.setAccessTokenUri(tokenUrl);
        resource.setId(resourceId);
        resource.setClientId(resourceClientId);
        resource.setClientSecret(resourceClientSecret);

        resource.setGrantType("password");

        resource.setScope(Arrays.asList("openid"));

        resource.setUsername("user1@example.com");
        resource.setPassword("user1");

        OAuth2RestTemplate template = new OAuth2RestTemplate(resource);

        ClientHttpRequestFactory factory = template.getRequestFactory();

        template.setRequestFactory(requestFactory());
        return template;
    }

    private HttpComponentsClientHttpRequestFactory requestFactory(){

        CloseableHttpClient httpClient
                = HttpClients.custom()
                .setSSLHostnameVerifier(new NoopHostnameVerifier())
                .build();
        HttpComponentsClientHttpRequestFactory requestFactory
                = new HttpComponentsClientHttpRequestFactory();
        requestFactory.setHttpClient(httpClient);

        return requestFactory;
    }
}

当我使用非HTTPS连接时,OAuth2代码可以正常工作。 只是没有使用HTTPS

1 个答案:

答案 0 :(得分:0)

如果您希望TLS正常工作,则必须使用别名“ localhost ”创建证书。
其他可能性是静态地或在测试配置中设置它:

final HostnameVerifier defaultHostnameVerifier = javax.net.ssl.HttpsURLConnection.getDefaultHostnameVerifier ();
final HostnameVerifier localhostAcceptedHostnameVerifier = new javax.net.ssl.HostnameVerifier () {

   public boolean verify ( String hostname, javax.net.ssl.SSLSession sslSession ) {
        if ( hostname.equals ( "localhost" ) ) {
            return true;
        }
         return defaultHostnameVerifier.verify ( hostname, sslSession );
    }
};
javax.net.ssl.HttpsURLConnection.setDefaultHostnameVerifier ( localhostAcceptedHostnameVerifier );

...