java调用需要登录的https restful接口

sq287197314 2018-01-04 05:18:24

最近公司让做个数据同步，给了两个restful获取账户信息的接口，但是需要登录才能获取数据，希望各位大佬能指点一下。
这是登录界面，https://id.xmu.edu.my/api-auth/login/?next=/api/malayteachers/

这是我调这个接口的代码，里面具体代码参考的是
http://blog.csdn.net/zpf336/article/details/73480810



public class HTTPSClientTest {

	public static void main(String[] args) throws Exception {

		HttpClient httpClient = null;



		httpClient = new HTTPSTrustClient().init();

		// httpClient = new HTTPSCertifiedClient().init();



		String url = "https://id.xmu.edu.my/api-auth/login/";

		// String url = "https://id.xmu.edu.my/api/malayteachers/";

		// String url = "https://1.2.6.2:8011/xxx/api/getHealth";



		Map<String, String> paramHeader = new HashMap<>();

		paramHeader.put("Accept", "application/json");

		Map<String, String> paramBody = new HashMap<>();

		//paramBody.put("referrer", "https://id.xmu.edu.my/");

		paramBody.put("csrfmiddlewaretoken", "kMTIfPRf7QdGFJ4km2NHmbnUdxM0Ta6TP2JJ6fa8hl1GcmyuJmJdI4dW55ymy5nV");

		paramBody.put("next", "/api/malayteachers/");

		paramBody.put("id_username", "xxxxxx");

		paramBody.put("id_password", "xxxxxx");

		String result = HTTPSClientUtil.doPost(httpClient, url, paramHeader, paramBody);



		// String result = HTTPSClientUtil.doGet(httpsClient, url, null, null);



		System.out.println(result);

	}

}

...全文

1228 7 打赏收藏转发到动态举报

写回复

用AI写文章

7 条回复

切换为时间正序

请发表友善的回复…

发表回复

qq_36264496 2018-04-01

打赏
举报

你好，我最近也遇到相似的问题，调用接口RestFul 接口会有一个用户名密码的验证，请问你这个解决了吗？

sq287197314 2018-01-27

打赏
举报

把账号密码加密放在头里就行了


    private static void doPost() throws Exception {
		HttpClient httpClient = null;

		httpClient = new HTTPSTrustClient().init();
		// httpClient = new HTTPSCertifiedClient().init();

		
		String url = "https://xxxxxx/";
		String username = "";
		String password = "";
		// String url = "https://1.2.6.2:8011/xxx/api/getHealth";

		Map<String, String> paramHeader = new HashMap<>();
		paramHeader.put("Accept", "application/json");
		
		String authHeader = new sun.misc.BASE64Encoder().encode((username + ":" + password).getBytes());
		//System.out.println(authHeader);
		paramHeader.put("Authorization", "Basic " + authHeader);
		Map<String, String> paramBody = new HashMap<>();
		//paramBody.put("referrer", "https://id.xmu.edu.my/");
		//paramBody.put("csrfmiddlewaretoken", "QMBi9iuxCtI0GAREyUvZpVGD3BJdQnYk8U9VdooBwjyofJLksFay6XoEwkdW0nUt");
		//paramBody.put("next", "/api/malayteachers/");
		/*paramBody.put("username", username);
		paramBody.put("password", password);*/
		String result = HTTPSClientUtil.doGet(httpClient, url, paramHeader, paramBody);

		// String result = HTTPSClientUtil.doGet(httpsClient, url, null, null);

		System.out.println(result);
	}

ZHOU西口 2018-01-07

打赏
举报

这个不是get请求吧，你需要用post模拟登陆，把header、cookie都带上。

maradona1984 2018-01-05

打赏
举报

你用浏览器请求,看看浏览器如何保持会话的,一般场景(容器tomcat,用session来维持会话),可以看下JSESSIONID,如果是其他,那得看你们在cookie存的是什么,反正都是用HttpClient先登录,然后拿到cookie,再发送请求时把cookie带过去就OK了

sq287197314 2018-01-05

打赏
举报

用浏览器登陆后有两个cookie，一个是csrftoken，还有一个是sessionid。我先拿到cookie之后，再去登陆，但是还好报403错误。


ublic class LoginTest extends HttpClientBuilder {

	public static void main(String[] args) throws Exception {
		// 跳过证书验证
		SSLContext ctx = SSLContext.getInstance("TLS");
		X509TrustManager tm = new X509TrustManager() {
			@Override
			public void checkClientTrusted(X509Certificate[] chain, String authType) throws CertificateException {
			}
	
			@Override
			public void checkServerTrusted(X509Certificate[] chain, String authType) throws CertificateException {
			}
	
			@Override
			public X509Certificate[] getAcceptedIssuers() {
				return null;
			}
		};
		// 设置成已信任的证书
		ctx.init(null, new TrustManager[] { tm }, null);
		ConnectionSocketFactory connectionSocketFactory = new SSLConnectionSocketFactory(ctx);

		// 设置协议http和https对应的处理socket链接工厂的对象
		Registry<ConnectionSocketFactory> socketFactoryRegistry = RegistryBuilder
				.<ConnectionSocketFactory> create()
				.register("http", PlainConnectionSocketFactory.INSTANCE)
				.register("https", connectionSocketFactory).build();
		PoolingHttpClientConnectionManager connManager = new PoolingHttpClientConnectionManager(socketFactoryRegistry);
		HttpClients.custom().setConnectionManager(connManager);
		
		CookieStore cookieStore = new BasicCookieStore();
		HttpClients.custom().setDefaultCookieStore(cookieStore);
		
		// 全局请求设置
		RequestConfig globalConfig = RequestConfig.custom().setCookieSpec(CookieSpecs.STANDARD).build();
		// 创建HttpClient上下文
		HttpClientContext context = HttpClientContext.create();
		context.setCookieStore(cookieStore);

		// 创建一个HttpClient
		CloseableHttpClient httpClient = HttpClients.custom().setConnectionManager(connManager).setDefaultRequestConfig(globalConfig).setDefaultCookieStore(cookieStore).build();

		CloseableHttpResponse res = null;

		// 创建本地的HTTP内容
		try {
			try {
				// 创建一个get请求用来获取必要的Cookie，如_xsrf信息
				HttpGet get = new HttpGet("https://id.xmu.edu.my/api-auth/login");

				res = httpClient.execute(get, context);
				// 获取常用Cookie,包括_xsrf信息
				System.out.println("访问登陆页的获取的常规Cookie:===============");
				String token = null;
				for (Cookie c : cookieStore.getCookies()) {
					System.out.println(c.getName() + ": " + c.getValue());
					if ("csrftoken".endsWith(c.getName())) {
						token = c.getValue();
					}
				}
				res.close();

				// 构造post数据
				List<NameValuePair> valuePairs = new LinkedList<NameValuePair>();
				valuePairs.add(new BasicNameValuePair("csrfmiddlewaretoken", token));
				valuePairs.add(new BasicNameValuePair("next", "/api/malayteachers/"));
				valuePairs.add(new BasicNameValuePair("id_username", "id_username"));
				valuePairs.add(new BasicNameValuePair("id_password", "id_password"));
				UrlEncodedFormEntity entity = new UrlEncodedFormEntity(valuePairs, Consts.UTF_8);
				entity.setContentType("application/x-www-form-urlencoded");

				// 创建一个post请求
				HttpPost post = new HttpPost("https://id.xmu.edu.my/api-auth/login/?next=/api/malayteachers/");
				// 注入post数据
				post.setEntity(entity);
				res = httpClient.execute(post, context);

				res.close();

				System.out.println("登陆成功后,新的Cookie:===============");
				for (Cookie c : context.getCookieStore().getCookies()) {
					System.out.println(c.getName() + ": " + c.getValue());
				}

				// 构造一个新的get请求，用来测试登录是否成功
				HttpGet newGet = new HttpGet("https://id.xmu.edu.my/api/malayteachers/");
				res = httpClient.execute(newGet, context);
				String content = EntityUtils.toString(res.getEntity());
				System.out.println("登陆成功后访问的页面===============");
				System.out.println(content);
				res.close();

			} finally {
				httpClient.close();
			}
		} catch (IOException e) {
			e.printStackTrace();
		}
	}

}