src/se/leap/leapclient/LeapHttpClient.java


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58

package se.leap.leapclient;

import java.io.InputStream;
import java.security.KeyStore;

import org.apache.http.conn.ClientConnectionManager;
import org.apache.http.conn.scheme.PlainSocketFactory;
import org.apache.http.conn.scheme.Scheme;
import org.apache.http.conn.scheme.SchemeRegistry;
import org.apache.http.conn.ssl.SSLSocketFactory;
import org.apache.http.impl.client.DefaultHttpClient;
import org.apache.http.impl.conn.SingleClientConnManager;

import android.content.Context;

public class LeapHttpClient extends DefaultHttpClient {
	final Context context;

	  public LeapHttpClient(Context context) {
	      this.context = context;
	  }

	  @Override
	  protected ClientConnectionManager createClientConnectionManager() {
	      SchemeRegistry registry = new SchemeRegistry();
	      registry.register(new Scheme("http", PlainSocketFactory.getSocketFactory(), 80));
	      // Register for port 443 our SSLSocketFactory with our keystore
	      // to the ConnectionManager
	      registry.register(new Scheme("https", newSslSocketFactory(), 443));
	      return new SingleClientConnManager(getParams(), registry);
	  }

	  private SSLSocketFactory newSslSocketFactory() {
	      try {
	          // Get an instance of the Bouncy Castle KeyStore format
	          KeyStore trusted = KeyStore.getInstance("BKS");
	          // Get the raw resource, which contains the keystore with
	          // your trusted certificates (root and any intermediate certs)
	          InputStream in = context.getResources().openRawResource(R.raw.leapkeystore);
	          try {
	              // Initialize the keystore with the provided trusted certificates
	              // Also provide the password of the keystore
	              trusted.load(in, "uer92jf".toCharArray());
	          } finally {
	              in.close();
	          }
	          // Pass the keystore to the SSLSocketFactory. The factory is responsible
	          // for the verification of the server certificate.
	          SSLSocketFactory sf = new SSLSocketFactory(trusted);
	          // Hostname verification from certificate
	          // http://hc.apache.org/httpcomponents-client-ga/tutorial/html/connmgmt.html#d4e506
	          sf.setHostnameVerifier(SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER);
	          return sf;
	      } catch (Exception e) {
	          throw new AssertionError(e);
	      }
	  }
}