V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
lqw3030
V2EX  ›  Java

Java .net 包里的 Httpclient 如何连接代理并进行隧道验证

  •  
  •   lqw3030 · 2018-12-08 22:05:13 +08:00 · 1892 次点击
    这是一个创建于 1937 天前的主题,其中的信息可能已经有所发展或是发生改变。

    照着官网的 demo,但返回的是 null

     Authenticator authenticator=new Authenticator() {
                @Override
                public PasswordAuthentication requestPasswordAuthenticationInstance(String host, InetAddress addr, int port, String protocol, String prompt, String scheme, URL url, RequestorType reqType) {
                    return new PasswordAuthentication("xxxx", "xxxx".toCharArray());
                }
            };
    
     HttpClient client = HttpClient.newBuilder()
                    .version(HttpClient.Version.HTTP_1_1)
                    .followRedirects(HttpClient.Redirect.NORMAL)
                    .connectTimeout(Duration.ofSeconds(20))
                    .proxy(ProxySelector.of(new InetSocketAddress("xxxxx",xxxx)))
                    .authenticator(authenticator)
                    .build();
            HttpRequest request = HttpRequest.newBuilder()
                    .uri(URI.create(sinaUrl.getUrl()))
                    .header("Proxy-Authorization","Basic HIPD76B28I854FKD:D46CFF91FF69AFEF")
                    .header("CooKie", sinaRequestCache.getCookies())
                    .headers(sinaRequestCache.getHeaders())
                    .build();
            HttpResponse<String> httpResponse = client.send(request, HttpResponse.BodyHandlers.ofString());
    

    求教,stackoverflow 上有个同样的问题,但是没有人回答

    2 条回复    2018-12-08 23:38:53 +08:00
    wdlth
        1
    wdlth  
       2018-12-08 23:20:05 +08:00
    Proxy-Authorization 那个用户名密码要 Base64 编码,和 Basic Auth 一样的。
    lqw3030
        2
    lqw3030  
    OP
       2018-12-08 23:38:53 +08:00
    @wdlth 解决了,验证信息应该是没问题。
    下面是官方的原话:
    Disable Basic authentication for HTTPS tunneling
    In some environments, certain authentication schemes may be undesirable when proxying HTTPS. Accordingly, the Basic authentication scheme has been deactivated, by default, in the Oracle Java Runtime, by adding Basic to the jdk.http.auth.tunneling.disabledSchemes networking property. Now, proxies requiring Basic authentication when setting up a tunnel for HTTPS will no longer succeed by default. If required, this authentication scheme can be reactivated by removing Basic from the jdk.http.auth.tunneling.disabledSchemes networking property, or by setting a system property of the same name to "" ( empty ) on the command line.

    Additionally, the jdk.http.auth.tunneling.disabledSchemes and jdk.http.auth.proxying.disabledSchemes networking properties, and system properties of the same name, can be used to disable other authentication schemes that may be active when setting up a tunnel for HTTPS, or proxying plain HTTP, respectively.
    JDK-8160838 (not public)

    大概意思就是从这个版本后默认禁用了 HTTPS 隧道的基本身份验证
    解决办法:
    1.修改 net.properties 注释掉 jdk.http.auth.tunneling.disabledSchemes=Basic 一行
    2.运行时候置空属性 System.setProperty("jdk.http.auth.tunneling.disabledSchemes", "");

    但我觉得都不靠谱- -!
    关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   我们的愿景   ·   实用小工具   ·   948 人在线   最高记录 6543   ·     Select Language
    创意工作者们的社区
    World is powered by solitude
    VERSION: 3.9.8.5 · 26ms · UTC 21:07 · PVG 05:07 · LAX 14:07 · JFK 17:07
    Developed with CodeLauncher
    ♥ Do have faith in what you're doing.