add https support

pom.xml

@@ -6,7 +6,7 @@
 
     <groupId>com.baidu.hugegraph</groupId>
     <artifactId>hugegraph-common</artifactId>
-    <version>1.7.5</version>
+    <version>1.7.6</version>
 
     <name>hugegraph-common</name>
     <url>https://github.com/hugegraph/hugegraph-common</url>
@@ -260,7 +260,7 @@
                         <manifestEntries>
                             <!-- Must be on one line, otherwise the automatic
                                  upgrade script cannot replace the version number -->
-                            <Implementation-Version>1.7.5.0</Implementation-Version>
+                            <Implementation-Version>1.7.6.0</Implementation-Version>
                         </manifestEntries>
                     </archive>
                 </configuration>

src/main/java/com/baidu/hugegraph/rest/RestClient.java

@@ -19,27 +19,12 @@
 
 package com.baidu.hugegraph.rest;
 
-import static org.glassfish.jersey.apache.connector.ApacheClientProperties.CONNECTION_MANAGER;
-
-import java.util.Collection;
-import java.util.Map;
-import java.util.concurrent.Callable;
-import java.util.concurrent.ScheduledExecutorService;
-import java.util.concurrent.TimeUnit;
-
-import javax.ws.rs.client.Client;
-import javax.ws.rs.client.ClientBuilder;
-import javax.ws.rs.client.Entity;
-import javax.ws.rs.client.Invocation.Builder;
-import javax.ws.rs.client.WebTarget;
-import javax.ws.rs.core.MediaType;
-import javax.ws.rs.core.MultivaluedMap;
-import javax.ws.rs.core.Response;
-import javax.ws.rs.core.Variant;
-
+import com.baidu.hugegraph.util.ExecutorUtil;
+import com.google.common.collect.ImmutableMap;
 import org.apache.commons.lang3.tuple.Pair;
 import org.apache.http.impl.conn.PoolingHttpClientConnectionManager;
 import org.apache.http.pool.PoolStats;
+import org.glassfish.jersey.SslConfigurator;
 import org.glassfish.jersey.apache.connector.ApacheConnectorProvider;
 import org.glassfish.jersey.client.ClientConfig;
 import org.glassfish.jersey.client.ClientProperties;
@@ -49,8 +34,26 @@
 import org.glassfish.jersey.message.GZipEncoder;
 import org.glassfish.jersey.uri.UriComponent;
 
-import com.baidu.hugegraph.util.ExecutorUtil;
-import com.google.common.collect.ImmutableMap;
+import javax.net.ssl.*;
+import javax.ws.rs.client.Client;
+import javax.ws.rs.client.ClientBuilder;
+import javax.ws.rs.client.Entity;
+import javax.ws.rs.client.Invocation.Builder;
+import javax.ws.rs.client.WebTarget;
+import javax.ws.rs.core.MediaType;
+import javax.ws.rs.core.MultivaluedMap;
+import javax.ws.rs.core.Response;
+import javax.ws.rs.core.Variant;
+import java.security.KeyManagementException;
+import java.security.cert.CertificateException;
+import java.security.cert.X509Certificate;
+import java.util.Collection;
+import java.util.Map;
+import java.util.concurrent.Callable;
+import java.util.concurrent.ScheduledExecutorService;
+import java.util.concurrent.TimeUnit;
+
+import static org.glassfish.jersey.apache.connector.ApacheClientProperties.CONNECTION_MANAGER;
 
 public abstract class RestClient {
 
@@ -90,9 +93,63 @@ public RestClient(String url, String user, String password, int timeout,
                                      .config(maxTotal, maxPerRoute)
                                      .build());
     }
-
+
+    public RestClient(String url, String user, String password, int timeout,
+                      int maxTotal, int maxPerRoute, String protocol,
+                      String trustStoreFile, String trustStorePassword) {
+        this(url, new ConfigBuilder().config(timeout)
+                                     .config(user, password)
+                                     .config(maxTotal, maxPerRoute)
+                                     .config(protocol, trustStoreFile, trustStorePassword)
+                                     .build());
+    }
+
+    private TrustManager[] NoCheckTrustManager() {
+        return new TrustManager[]{
+               new X509TrustManager()
+        };
+    }
+
+    private static class X509TrustManager implements javax.net.ssl.X509TrustManager {
+        @Override
+        public void checkClientTrusted(X509Certificate[] chain, String authType)
+                throws CertificateException {
+        }
+
+        @Override
+        public void checkServerTrusted(X509Certificate[] chain, String authType)
+                throws CertificateException {
+        }
+
+        @Override
+        public X509Certificate[] getAcceptedIssuers() {
+            return null;
+        }
+    }
+
     public RestClient(String url, ClientConfig config) {
-        this.client = ClientBuilder.newClient(config);
+        Client client = null;
+        Object protocol = config.getProperties().get("protocol");
+        if (protocol != null && protocol.equals("https")) {
+            try {
+                SslConfigurator sslConfig = SslConfigurator.newInstance();
+                sslConfig.trustStoreFile(config.getProperties().get("trustStoreFile").toString())
+                         .trustStorePassword(config.getProperties().get("trustStorePassword").toString());
+                sslConfig.securityProtocol("SSL");
+                SSLContext sc = sslConfig.createSSLContext();
+                TrustManager[] trustAllCerts = NoCheckTrustManager();
+                sc.init(null, trustAllCerts, new java.security.SecureRandom());
+                client = ClientBuilder.newBuilder()
+                        .hostnameVerifier(new HostNameVerifier(url))
+                        .sslContext(sc)
+                        .build();
+            } catch (KeyManagementException e) {
+                throw new ClientException("security key management exception", e);
+            }
+        } else {
+            client = ClientBuilder.newClient(config);
+        }
+        this.client = client;
         this.client.register(GZipEncoder.class);
         this.target = this.client.target(url);
         this.pool = (PoolingHttpClientConnectionManager)
@@ -284,6 +341,26 @@ private static String encode(String raw) {
         return UriComponent.encode(raw, UriComponent.Type.PATH_SEGMENT);
     }
 
+    private static class HostNameVerifier implements HostnameVerifier {
+
+        private String url;
+
+        private HostNameVerifier(String url) {
+            this.url = url;
+        }
+
+        @Override
+        public boolean verify(String hostname, SSLSession session) {
+            if (!this.url.equals("") && this.url.contains(hostname)) {
+                return true;
+            } else {
+                HostnameVerifier hv = HttpsURLConnection.getDefaultHostnameVerifier();
+                return hv.verify(hostname, session);
+            }
+        }
+
+    }
+
     protected abstract void checkStatus(Response response,
                                         Response.Status... statuses);
 
@@ -336,6 +413,13 @@ public ConfigBuilder config(int maxTotal, int maxPerRoute) {
             return this;
         }
 
+        public ConfigBuilder config(String protocol, String trustStoreFile, String trustStorePassword) {
+            this.config.property("protocol", protocol);
+            this.config.property("trustStoreFile", trustStoreFile);
+            this.config.property("trustStorePassword", trustStorePassword);
+            return this;
+        }
+
         public ClientConfig build() {
             return this.config;
         }

src/test/java/com/baidu/hugegraph/unit/rest/RestClientTest.java

@@ -80,6 +80,17 @@ public RestClientImpl(String url, String user, String password,
             this.content = "";
         }
 
+        public RestClientImpl(String url, String user, String password,
+                              int timeout, int maxTotal, int maxPerRoute,
+                              String protocol, String trustStoreFile,
+                              String trustStorePassword, int status) {
+            super(url, user, password, timeout, maxTotal, maxPerRoute, protocol,
+                              trustStoreFile, trustStorePassword);
+            this.status = status;
+            this.headers = ImmutableMultivaluedMap.empty();
+            this.content = "";
+        }
+
         public RestClientImpl(String url, int timeout, int status) {
             this(url, timeout, status, ImmutableMultivaluedMap.empty(), "");
         }