mrserverless · February 17, 2017 09:46
diff --git a/SSLJerseyClient.java b/SSLJerseyClient.java

 private TrustManager[] loadTrustManagers(String certificateFile) throws KeyStoreException, CertificateException, NoSuchAlgorithmException, IOException {
    KeyStore trustedCertStore = KeyStore.getInstance(KeyStore.getDefaultType());
    trustedCertStore.load(SecurityModule.class.getClassLoader().getResourceAsStream(), null);
    
    TrustManagerFactory tmf = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
    tmf.init(trustedCertStore);
    
    return tmf.getTrustManagers();
 }

 private Registry<ConnectionSocketFactory> createSSLSocketRegistry(TrustManager[] trustManagers) throws NoSuchAlgorithmException, KeyManagementException { 
    final SSLContext ctx = SSLContext.getInstance(SSLConnectionSocketFactory.TLS);
    ctx.init(null, trustManagers, null);
    return RegistryBuilder.<ConnectionSocketFactory>create()
        .register("http", PlainConnectionSocketFactory.getSocketFactory())
        .register("https", new SSLConnectionSocketFactory(ctx))
                .build();
 }

 public JerseyClient createSSLJerseyClient (Environment environment, JerseyClientConfiguration clientConfiguration) throws Exception {
    final String CERT_FILE = "jssecacerts.jks";
    TrustManager[] trustManager = loadTrustManagers(CERT_FILE);
    Registry<ConnectionSocketFactory> = createSSLSocketRegistry(trustManager);
    
    return new JerseyClientBuilder(environment)
        .using(clientConfiguration)
        .using(sslSocketRegistry)
        .build("SSLJerseyClient");
 }

	private TrustManager[] loadTrustManagers(String certificateFile) throws KeyStoreException, CertificateException, NoSuchAlgorithmException, IOException {
	KeyStore trustedCertStore = KeyStore.getInstance(KeyStore.getDefaultType());
	trustedCertStore.load(SecurityModule.class.getClassLoader().getResourceAsStream(), null);

	TrustManagerFactory tmf = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());
	tmf.init(trustedCertStore);

	return tmf.getTrustManagers();
	}

	private Registry<ConnectionSocketFactory> createSSLSocketRegistry(TrustManager[] trustManagers) throws NoSuchAlgorithmException, KeyManagementException {
	final SSLContext ctx = SSLContext.getInstance(SSLConnectionSocketFactory.TLS);
	ctx.init(null, trustManagers, null);
	return RegistryBuilder.<ConnectionSocketFactory>create()
	.register("http", PlainConnectionSocketFactory.getSocketFactory())
	.register("https", new SSLConnectionSocketFactory(ctx))
	.build();
	}

	public JerseyClient createSSLJerseyClient (Environment environment, JerseyClientConfiguration clientConfiguration) throws Exception {
	final String CERT_FILE = "jssecacerts.jks";
	TrustManager[] trustManager = loadTrustManagers(CERT_FILE);
	Registry<ConnectionSocketFactory> = createSSLSocketRegistry(trustManager);

	return new JerseyClientBuilder(environment)
	.using(clientConfiguration)
	.using(sslSocketRegistry)
	.build("SSLJerseyClient");
	}