org.jboss.resteasy.client.jaxrs.engines.ClientHttpEngineBuilder43 Maven / Gradle / Ivy
package org.jboss.resteasy.client.jaxrs.engines;
import java.io.IOException;
import java.net.Socket;
import java.net.URI;
import java.net.URISyntaxException;
import java.security.AccessController;
import java.security.PrivilegedAction;
import java.security.SecureRandom;
import java.util.ArrayList;
import java.util.List;
import java.util.concurrent.TimeUnit;
import javax.net.ssl.HostnameVerifier;
import javax.net.ssl.SNIHostName;
import javax.net.ssl.SNIServerName;
import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLParameters;
import javax.net.ssl.SSLSocket;
import javax.net.ssl.TrustManager;
import org.apache.http.HttpHost;
import org.apache.http.client.HttpClient;
import org.apache.http.client.config.RequestConfig;
import org.apache.http.config.Registry;
import org.apache.http.config.RegistryBuilder;
import org.apache.http.conn.HttpClientConnectionManager;
import org.apache.http.conn.socket.ConnectionSocketFactory;
import org.apache.http.conn.socket.PlainConnectionSocketFactory;
import org.apache.http.conn.ssl.DefaultHostnameVerifier;
import org.apache.http.conn.ssl.NoopHostnameVerifier;
import org.apache.http.conn.ssl.SSLConnectionSocketFactory;
import org.apache.http.conn.ssl.TrustSelfSignedStrategy;
import org.apache.http.conn.util.PublicSuffixMatcherLoader;
import org.apache.http.impl.client.HttpClientBuilder;
import org.apache.http.impl.conn.BasicHttpClientConnectionManager;
import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
import org.apache.http.protocol.HttpContext;
import org.apache.http.protocol.HttpCoreContext;
import org.apache.http.ssl.SSLContexts;
import org.jboss.resteasy.client.jaxrs.ClientHttpEngine;
import org.jboss.resteasy.client.jaxrs.ClientHttpEngineBuilder;
import org.jboss.resteasy.client.jaxrs.ResteasyClientBuilder;
import org.jboss.resteasy.client.jaxrs.spi.ClientConfigProvider;
import org.jboss.resteasy.spi.PriorityServiceLoader;
/**
*
* @deprecated This will be removed in a future release as the underlying default implementation of the
* {@link org.jboss.resteasy.client.jaxrs.ClientHttpEngineBuilder} will be replaced.
*/
@Deprecated(forRemoval = true, since = "6.2")
public class ClientHttpEngineBuilder43 implements ClientHttpEngineBuilder {
private ResteasyClientBuilder that;
@Override
public ClientHttpEngineBuilder resteasyClientBuilder(ResteasyClientBuilder resteasyClientBuilder) {
that = resteasyClientBuilder;
return this;
}
@Override
public ClientHttpEngine build() {
HostnameVerifier verifier = null;
if (that.getHostnameVerifier() != null) {
verifier = that.getHostnameVerifier();
} else {
switch (that.getHostnameVerification()) {
case ANY:
verifier = new NoopHostnameVerifier();
break;
case WILDCARD:
verifier = new DefaultHostnameVerifier();
break;
case STRICT:
//this will load default file from httplcient.jar!/mozilla/public-suffix-list.txt
//if this default file isn't what you want, set a customized HostNameVerifier
//to ResteasyClientBuilder instead
verifier = new DefaultHostnameVerifier(PublicSuffixMatcherLoader.getDefault());
break;
}
}
try {
SSLConnectionSocketFactory sslsf = null;
SSLContext theContext = that.getSSLContext();
final ClientConfigProvider configProvider = findClientConfigProvider();
if (that.isTrustManagerDisabled()) {
theContext = SSLContext.getInstance("SSL");
theContext.init(null, new TrustManager[] { new PassthroughTrustManager() },
new SecureRandom());
verifier = new NoopHostnameVerifier();
sslsf = new SSLConnectionSocketFactory(theContext, verifier);
} else if (theContext != null) {
sslsf = new SSLConnectionSocketFactory(theContext, verifier) {
@Override
protected void prepareSocket(SSLSocket socket) throws IOException {
if (!that.getSniHostNames().isEmpty()) {
List sniNames = new ArrayList<>(that.getSniHostNames().size());
for (String sniHostName : that.getSniHostNames()) {
sniNames.add(new SNIHostName(sniHostName));
}
SSLParameters sslParameters = socket.getSSLParameters();
sslParameters.setServerNames(sniNames);
socket.setSSLParameters(sslParameters);
}
}
};
} else if (that.getKeyStore() != null || that.getTrustStore() != null) {
SSLContext ctx = SSLContexts.custom()
.setProtocol(SSLConnectionSocketFactory.TLS)
.setSecureRandom(null)
.loadKeyMaterial(that.getKeyStore(),
that.getKeyStorePassword() != null ? that.getKeyStorePassword().toCharArray() : null)
.loadTrustMaterial(that.getTrustStore(),
that.isTrustSelfSignedCertificates() ? TrustSelfSignedStrategy.INSTANCE : null)
.build();
sslsf = new SSLConnectionSocketFactory(ctx, verifier) {
@Override
protected void prepareSocket(SSLSocket socket) throws IOException {
List sniHostNames = that.getSniHostNames();
if (!sniHostNames.isEmpty()) {
List sniNames = new ArrayList<>(sniHostNames.size());
for (String sniHostName : sniHostNames) {
sniNames.add(new SNIHostName(sniHostName));
}
SSLParameters sslParameters = socket.getSSLParameters();
sslParameters.setServerNames(sniNames);
socket.setSSLParameters(sslParameters);
}
}
};
} else if (configProvider != null) {
// delegate creation of socket to ClientConfigProvider implementation
sslsf = new SSLConnectionSocketFactory(SSLContext.getDefault(), verifier) {
@Override
public Socket createSocket(HttpContext context) throws IOException {
try {
String targetHostUri = context.getAttribute(
HttpCoreContext.HTTP_TARGET_HOST).toString();
if (targetHostUri != null) {
return configProvider.getSSLContext(new URI(targetHostUri)).getSocketFactory().createSocket();
} else {
throw new RuntimeException("URI is not known");
}
} catch (URISyntaxException e) {
throw new RuntimeException(e);
}
}
};
} else {
final SSLContext tlsContext = SSLContext.getInstance(SSLConnectionSocketFactory.TLS);
tlsContext.init(null, null, null);
sslsf = new SSLConnectionSocketFactory(tlsContext, verifier);
}
final Registry registry = RegistryBuilder. create()
.register("http", PlainConnectionSocketFactory.getSocketFactory())
.register("https", sslsf)
.build();
HttpClientConnectionManager cm = null;
if (that.getConnectionPoolSize() > 0) {
PoolingHttpClientConnectionManager tcm = new PoolingHttpClientConnectionManager(
registry, null, null, null, that.getConnectionTTL(TimeUnit.MILLISECONDS), TimeUnit.MILLISECONDS);
tcm.setMaxTotal(that.getConnectionPoolSize());
if (that.getMaxPooledPerRoute() == 0) {
that.maxPooledPerRoute(that.getConnectionPoolSize());
}
tcm.setDefaultMaxPerRoute(that.getMaxPooledPerRoute());
cm = tcm;
} else {
cm = new BasicHttpClientConnectionManager(registry);
}
RequestConfig.Builder rcBuilder = RequestConfig.custom();
if (that.getReadTimeout(TimeUnit.MILLISECONDS) > -1) {
rcBuilder.setSocketTimeout((int) that.getReadTimeout(TimeUnit.MILLISECONDS));
}
if (that.getConnectionTimeout(TimeUnit.MILLISECONDS) > -1) {
rcBuilder.setConnectTimeout((int) that.getConnectionTimeout(TimeUnit.MILLISECONDS));
}
if (that.getConnectionCheckoutTimeout(TimeUnit.MILLISECONDS) > -1) {
rcBuilder.setConnectionRequestTimeout((int) that.getConnectionCheckoutTimeout(TimeUnit.MILLISECONDS));
}
return createEngine(cm, rcBuilder, getDefaultProxy(that), that.getResponseBufferSize(), verifier, theContext);
} catch (Exception e) {
throw new RuntimeException(e);
}
}
private static HttpHost getDefaultProxy(ResteasyClientBuilder that) {
String hostName = that.getDefaultProxyHostname();
return hostName != null ? new HttpHost(hostName, that.getDefaultProxyPort(), that.getDefaultProxyScheme()) : null;
}
protected ClientHttpEngine createEngine(final HttpClientConnectionManager cm, final RequestConfig.Builder rcBuilder,
final HttpHost defaultProxy, final int responseBufferSize, final HostnameVerifier verifier,
final SSLContext theContext) {
final HttpClient httpClient;
rcBuilder.setProxy(defaultProxy);
// This is somewhat an arbitrary number of seconds to run the eviction thread at. However, this is the default
// in WildFly so we will use it. We are not exposing this as a property as other clients may not require a
// a setting like this.
final long maxIdleTime = 60L;
if (System.getSecurityManager() == null) {
HttpClientBuilder httpClientBuilder = HttpClientBuilder.create()
.setConnectionManager(cm)
.evictExpiredConnections()
.evictIdleConnections(maxIdleTime, TimeUnit.SECONDS)
.setDefaultRequestConfig(rcBuilder.build())
.disableContentCompression();
if (!that.isCookieManagementEnabled()) {
httpClientBuilder.disableCookieManagement();
}
if (that.isDisableAutomaticRetries()) {
httpClientBuilder.disableAutomaticRetries();
}
httpClient = httpClientBuilder.build();
} else {
httpClient = AccessController.doPrivileged(new PrivilegedAction() {
@Override
public HttpClient run() {
HttpClientBuilder httpClientBuilder = HttpClientBuilder.create()
.setConnectionManager(cm)
.evictExpiredConnections()
.evictIdleConnections(maxIdleTime, TimeUnit.SECONDS)
.setDefaultRequestConfig(rcBuilder.build())
.disableContentCompression();
if (!that.isCookieManagementEnabled()) {
httpClientBuilder.disableCookieManagement();
}
if (that.isDisableAutomaticRetries()) {
httpClientBuilder.disableAutomaticRetries();
}
return httpClientBuilder.build();
}
});
}
ApacheHttpClient43Engine engine = new ApacheHttpClient43Engine(httpClient, true);
engine.setResponseBufferSize(responseBufferSize);
engine.setHostnameVerifier(verifier);
// this may be null. We can't really support this with Apache Client.
engine.setSslContext(theContext);
engine.setFollowRedirects(that.isFollowRedirects());
return engine;
}
private static ClientConfigProvider findClientConfigProvider() {
if (System.getSecurityManager() == null) {
return PriorityServiceLoader.load(ClientConfigProvider.class, getClassLoader(ClientConfigProvider.class)).first()
.orElse(null);
}
return AccessController.doPrivileged((PrivilegedAction) () -> PriorityServiceLoader
.load(ClientConfigProvider.class, getClassLoader(ClientConfigProvider.class)).first().orElse(null));
}
private static ClassLoader getClassLoader(final Class> type) {
ClassLoader result = Thread.currentThread().getContextClassLoader();
if (result == null) {
result = type.getClassLoader();
}
return result;
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy