How to ignore SSL certificate errors in Apache HttpClient 4.0

java ssl apache-httpclient-4.x
Viet picture Viet · Apr 24, 2010 · Viewed 255.4k times · Source

How do I bypass invalid SSL certificate errors with Apache HttpClient 4.0?

Answer

erversteeg picture erversteeg · Jun 23, 2014

All of the other answers were either deprecated or didn't work for HttpClient 4.3.

Here is a way to allow all hostnames when building an http client.

CloseableHttpClient httpClient = HttpClients
    .custom()
    .setHostnameVerifier(AllowAllHostnameVerifier.INSTANCE)
    .build();

Or if you are using version 4.4 or later, the updated call looks like this: 

CloseableHttpClient httpClient = HttpClients
    .custom()
    .setSSLHostnameVerifier(NoopHostnameVerifier.INSTANCE)
    .build();

Related questions

Trusting all certificates using HttpClient over HTTPS

Recently posted a question regarding the HttpClient over Https (found here). I've made some headway, but I've run into new issues. As with my last problem, I can't seem to find an example anywhere that works for me. Basically, I …

Read More
How to set TLS version on apache HttpClient

How can I change the supported TLS versions on my HttpClient? I'm doing: SSLContext sslContext = SSLContext.getInstance("TLSv1.1"); sslContext.init( keymanagers.toArray(new KeyManager[keymanagers.size()]), null, null); SSLSocketFactory socketFactory = new SSLSocketFactory(sslContext, new String[]{"TLSv1.1"}, null, null); Scheme scheme = …

Read More
Why am I getting an exception javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated?

I'm using Apache HttpComponents HttpClient(4.0.1) to make a HTTPS call, but I'm this exception as the response: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(SSLSessionImpl.java:345) at org.apache.http.conn.…

Read More