元谋二期后端软件系统
blame | 历史 | 原始文档
liurunyu
2024-08-19 ecb82d98e523ffa025286ffa617096dfe18c0398 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61

package com.dy.pipIrrSell.config;


 


import com.dy.pipIrrGlobal.cert.WxCertUtil;


import com.dy.pipIrrSell.wechatpay.PayInfo;


import okhttp3.OkHttpClient;


import org.springframework.beans.factory.annotation.Autowired;


import org.springframework.boot.context.properties.ConfigurationProperties;


import org.springframework.context.annotation.Bean;


import org.springframework.context.annotation.Configuration;


import org.springframework.core.io.ResourceLoader;


import org.springframework.http.client.ClientHttpRequestFactory;


import org.springframework.http.client.OkHttp3ClientHttpRequestFactory;


 


import javax.net.ssl.KeyManagerFactory;


import javax.net.ssl.SSLContext;


import javax.net.ssl.TrustManagerFactory;


import javax.net.ssl.X509TrustManager;


import java.io.InputStream;


import java.security.KeyStore;


 


/**


 * @author ZhuBaoMin


 * @date 2024-03-06 11:44


 * @LastEditTime 2024-03-06 11:44


 * @Description


 */


 


@Configuration


public class RestTemplateWechatCertConfig {


 


    String mchid = PayInfo.mchid;


    @Autowired


    private ResourceLoader resourceLoader;


 


    @Bean


    @ConfigurationProperties(prefix = "org.liurb.core.rest-template.config.connection")


    public ClientHttpRequestFactory wechatHttpRequestFactory() throws Exception {


 


        KeyStore keyStore = KeyStore.getInstance("PKCS12");


        InputStream in = WxCertUtil.getCert_p12InputStream(resourceLoader);


        keyStore.load(in, mchid.toCharArray());


 


        KeyManagerFactory keyManagerFactory = KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());


        keyManagerFactory.init(keyStore, mchid.toCharArray());


 


        SSLContext context = SSLContext.getInstance("TLS");


        context.init(keyManagerFactory.getKeyManagers(), null, null);


 


        OkHttpClient okHttpClient = new OkHttpClient.Builder()


                .sslSocketFactory(context.getSocketFactory(), getDefaultX509TrustManager())


                .build();


 


        return new OkHttp3ClientHttpRequestFactory(okHttpClient);


    }


 


    private static X509TrustManager getDefaultX509TrustManager() throws Exception {


        TrustManagerFactory factory = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm());


        factory.init((KeyStore) null);


        return (X509TrustManager) factory.getTrustManagers()[0];


    }


}