Merge branch '20220802' into 'master'

fix: minio接口https无法调用问题 See merge request huang/thingsboard3.3.2!123

Merge branch '20220802' into 'master'
fix: minio接口https无法调用问题 See merge request huang/thingsboard3.3.2!123
xp.Huang
2 parents 083209fd cc704e7e
Showing 1 changed file with 43 additions and 1 deletions
common/data/src/main/java/org/thingsboard/server/common/data/yunteng/core/utils/MinioFileStorageService.java
--- a/common/data/src/main/java/org/thingsboard/server/common/data/yunteng/core/utils/MinioFileStorageService.java
View file @fbc6984
+++ b/common/data/src/main/java/org/thingsboard/server/common/data/yunteng/core/utils/MinioFileStorageService.java
View file @fbc6984
@@ -2,6 +2,7 @@ package org.thingsboard.server.common.data.yunteng.core.utils;
 import io.minio.*;
 import lombok.extern.slf4j.Slf4j;
+import okhttp3.OkHttpClient;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
 import org.springframework.beans.factory.annotation.Autowired;
@@ -18,10 +19,15 @@ import org.thingsboard.server.common.data.yunteng.core.exception.FileStorageExce
 import org.thingsboard.server.common.data.yunteng.core.message.ErrorMessage;
 import org.thingsboard.server.common.data.yunteng.dto.FileUploadResponse;
+import javax.net.ssl.*;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.io.InputStream;
 import java.io.OutputStream;
+import java.security.KeyManagementException;
+import java.security.NoSuchAlgorithmException;
+import java.security.SecureRandom;
+import java.security.cert.X509Certificate;
 import java.util.Objects;
 @Service
@@ -33,13 +39,15 @@ public class MinioFileStorageService implements FileStorageService {
   private MinioClient minioClient;
   @Autowired
-  public MinioFileStorageService(MinioFileStorageProperties fileStorageProperties) {
+  public MinioFileStorageService(MinioFileStorageProperties fileStorageProperties)
+      throws KeyManagementException {
     this.fileStorageProperties = fileStorageProperties;
     // 创建客户端对象
     this.minioClient =
         MinioClient.builder()
             .endpoint(fileStorageProperties.getMinioUrl())
             .credentials(fileStorageProperties.getMinioName(), fileStorageProperties.getMinioPass())
+            .httpClient(getUnsafeOkHttpClient())
             .build();
     // 创建储存桶
     checkBucket();
@@ -172,4 +180,38 @@ public class MinioFileStorageService implements FileStorageService {
         .concat("/")
         .concat(fileName);
   }
+
+  public static OkHttpClient getUnsafeOkHttpClient() throws KeyManagementException {
+    try {
+      final TrustManager[] trustAllCerts =
+          new TrustManager[] {
+            new X509TrustManager() {
+              @Override
+              public void checkClientTrusted(X509Certificate[] x509Certificates, String s){}
+
+              @Override
+              public void checkServerTrusted(X509Certificate[] x509Certificates, String s){}
+
+              @Override
+              public X509Certificate[] getAcceptedIssuers() {
+                return new X509Certificate[] {};
+              }
+            }
+          };
+
+      final SSLContext sslContext = SSLContext.getInstance("SSL");
+      sslContext.init(null, trustAllCerts, new SecureRandom());
+      final SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory();
+      OkHttpClient.Builder builder = new OkHttpClient.Builder();
+      builder.sslSocketFactory(sslSocketFactory, (X509TrustManager) trustAllCerts[0]);
+
+      builder.hostnameVerifier(
+              (s, sslSession) -> true);
+      return builder.build();
+
+    } catch (NoSuchAlgorithmException e) {
+      e.printStackTrace();
+    }
+    return null;
+  }
 }