Created
February 9, 2016 00:40
-
-
Save sguzman/a7b6cbb4368e5556ac42 to your computer and use it in GitHub Desktop.
Custom SSLSocketFactory Implementation to enable tls 1.1 and tls 1.2 - thanks to https://github.com/fkrauthan
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package com.santaba.zuora.tls; | |
| import org.apache.commons.httpclient.params.HttpConnectionParams; | |
| import org.apache.commons.httpclient.protocol.SecureProtocolSocketFactory; | |
| import javax.net.ssl.SSLContext; | |
| import javax.net.ssl.SSLSocket; | |
| import javax.net.ssl.SSLSocketFactory; | |
| import java.io.IOException; | |
| import java.net.InetAddress; | |
| import java.net.Socket; | |
| import java.security.KeyManagementException; | |
| import java.security.NoSuchAlgorithmException; | |
| public class TLSSocketFactory implements SecureProtocolSocketFactory { | |
| private SSLSocketFactory internalSSLSocketFactory; | |
| public TLSSocketFactory() throws KeyManagementException, NoSuchAlgorithmException { | |
| SSLContext context = SSLContext.getInstance("TLS"); | |
| context.init(null, null, null); | |
| internalSSLSocketFactory = context.getSocketFactory(); | |
| } | |
| public String[] getDefaultCipherSuites() { | |
| return internalSSLSocketFactory.getDefaultCipherSuites(); | |
| } | |
| public String[] getSupportedCipherSuites() { | |
| return internalSSLSocketFactory.getSupportedCipherSuites(); | |
| } | |
| @Override | |
| public Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException { | |
| return enableTLSOnSocket(internalSSLSocketFactory.createSocket(s, host, port, autoClose)); | |
| } | |
| @Override | |
| public Socket createSocket(String host, int port) throws IOException { | |
| return enableTLSOnSocket(internalSSLSocketFactory.createSocket(host, port)); | |
| } | |
| @Override | |
| public Socket createSocket(String host, int port, InetAddress localHost, int localPort) throws IOException { | |
| return enableTLSOnSocket(internalSSLSocketFactory.createSocket(host, port, localHost, localPort)); | |
| } | |
| @Override | |
| public Socket createSocket(String s, int i, InetAddress inetAddress, int i1, HttpConnectionParams httpConnectionParams) throws IOException { | |
| return enableTLSOnSocket(internalSSLSocketFactory.createSocket(s, i, inetAddress, i1)); | |
| } | |
| public Socket createSocket(InetAddress host, int port) throws IOException { | |
| return enableTLSOnSocket(internalSSLSocketFactory.createSocket(host, port)); | |
| } | |
| public Socket createSocket(InetAddress address, int port, InetAddress localAddress, int localPort) throws IOException { | |
| return enableTLSOnSocket(internalSSLSocketFactory.createSocket(address, port, localAddress, localPort)); | |
| } | |
| private Socket enableTLSOnSocket(Socket socket) { | |
| if(socket != null && (socket instanceof SSLSocket)) { | |
| ((SSLSocket)socket).setEnabledProtocols(new String[] {"TLSv1.1", "TLSv1.2"}); | |
| } | |
| return socket; | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment