netty做服务端⽀持ssl协议实现websocket的wss协议(客户端
为浏览器)
也是在⽹上查的资料,整理⼀下相互学习下
第⼀步:⽣成SSL证书:
因为是测试,直接使⽤jdk⾃带的keytool⼯具⽣成⾃签名证书(注:⾃签名证书是不被浏览器认可的,只能⽤于测试),
--打开cmd
--输⼊命令(复制啊):keytool -genkey -keysize 2048 -validity 365 -keyalg RSA -keypass netty123 -storepass netty123 -
keystore wss.jks
第⼆步:在ChannelPipeline添加SslHandler:
⾸先写个⼯具类:SslUtil配置SSLContext
public static SSLContext createSSLContext(String type ,String path ,String password) throws Exception {
KeyStore ks = Instance(type); /// "JKS"
InputStream ksInputStream = new FileInputStream(path); /// 证书存放地址
ks.load(ksInputStream, CharArray());
//KeyManagerFactory充当基于密钥内容源的密钥管理器的⼯⼚。
KeyManagerFactory kmf = DefaultAlgorithm());//getDefaultAlgorithm:获取默认的 KeyManagerFactory kmf.init(ks, CharArray());
//SSLContext的实例表⽰安全套接字协议的实现,它充当⽤于安全套接字⼯⼚或 SSLEngine 的⼯⼚。
SSLContext sslContext = Instance("TLS");
sslContext.KeyManagers(), null, null);
return sslContext;
}
添加SslHandler(放在第⼀个)
@Override
public void initChannel(SocketChannel ch) throws Exception {
SSLContext sslContext = ateSSLContext("JKS","D://wss.jks","netty123");immortals
//SSLEngine 此类允许使⽤ssl安全套接层协议进⾏安全通信
SSLEngine engine = ateSSLEngine();
engine.tUClientMode(fal);
ch.pipeline().addLast(new SslHandler(engine));
ch.pipeline().addLast(new IdleStateHandler(5, 0, 0, TimeUnit.SECONDS));
ch.pipeline().addLast("http-codec", new HttpServerCodec());
ch.pipeline().addLast("aggregator", new HttpObjectAggregator(65536));
ch.pipeline().addLast("http-chunked", new ChunkedWriteHandler());
ch.pipeline().addLast(new AcceptorIdleStateTrigger());
authorizedsignaturech.pipeline().addLast("handler", new WebSocketHandler());
}
JS⽂件的URL:
var url = "wss://localhost:8000/ws";
第三步:运⾏
补充:(因为发现⼀些⼩伙伴不清楚部分类的来源,特此补充)--2021.09.08
⽬录:
AcceptorIdleStateTrigger .java
wss;
channel.ChannelHandler;
channel.ChannelHandlerContext;
channel.ChannelInboundHandlerAdapter;
handler.timeout.IdleState;
handler.timeout.IdleStateEvent;
@ChannelHandler.Sharable
public class AcceptorIdleStateTrigger extends ChannelInboundHandlerAdapter { private int unReceivedCounts=0;
@Override
public void channelRead(ChannelHandlerContext ctx, Object msg)
throws Exception {
//有消息时归零
unReceivedCounts=0;
super.channelRead(ctx, msg);
}
@Overridepearl buck
public void urEventTriggered(ChannelHandlerContext ctx, Object evt)
throws Exception {
if (evt instanceof IdleStateEvent) {
//在这⾥并处理业务逻辑
IdleState state = ((IdleStateEvent) evt).state();
if (state == IdleState.READER_IDLE) {
unReceivedCounts++;
System.out.println(unReceivedCounts);
if (unReceivedCounts>10) {
ctx.clo();spiralling
unReceivedCounts = 0;
}
}
} el {
super.urEventTriggered(ctx, evt);
}
}
}
SslUtil.java
wss;
import java.io.FileInputStream;
import java.io.InputStream;
import java.curity.KeyStore;
ssl.KeyManagerFactory;
ssl.SSLContext;
public class SslUtil {
public static SSLContext createSSLContext(String type ,String path ,String password) throws Exception {
KeyStore ks = Instance(type); /// "JKS"
InputStream ksInputStream = new FileInputStream(path); /// 证书存放地址
ks.load(ksInputStream, CharArray());
//KeyManagerFactory充当基于密钥内容源的密钥管理器的⼯⼚。
KeyManagerFactory kmf = DefaultAlgorithm());//getDefaultAlgorithm:获取默认的 KeyManagerFactory kmf.init(ks, CharArray());
/
/SSLContext的实例表⽰安全套接字协议的实现,它充当⽤于安全套接字⼯⼚或 SSLEngine 的⼯⼚。
SSLContext sslContext = Instance("TLS");
sslContext.KeyManagers(), null, null);
return sslContext;
}
}
WebSocketHandler.java
wss;
buffer.ByteBuf;
buffer.Unpooled;
channel.ChannelFuture;
channel.ChannelFutureListener;
channel.ChannelHandlerContext;
channel.ChannelInboundHandlerAdapter;
dec.http.DefaultFullHttpRespon;
dec.http.FullHttpRequest;
dec.http.HttpResponStatus;
dec.http.HttpVersion;
dec.http.websocketx.CloWebSocketFrame;
dec.http.websocketx.TextWebSocketFrame;
dec.http.websocketx.WebSocketFrame;
dec.http.websocketx.WebSocketServerHandshaker;
dec.http.websocketx.WebSocketServerHandshakerFactory;
util.ChartUtil;
/**
* websocket 具体业务处理⽅法
*
* */
public class WebSocketHandler extends ChannelInboundHandlerAdapter{
private WebSocketServerHandshaker handshaker;
/**
* 当客户端连接成功,返回个成功信息
* */
@Override
public void channelActive(ChannelHandlerContext ctx) throws Exception {
}
/**
* 当客户端断开连接
* 当客户端断开连接
* */
@Override
public void channelInactive(ChannelHandlerContext ctx) throws Exception {
}
@Override
public void channelReadComplete(ChannelHandlerContext ctx) throws Exception {
ctx.flush();
}
@Override
public void channelRead(ChannelHandlerContext ctx, Object msg)
throws Exception {
// 传统的HTTP接⼊
if(msg instanceof FullHttpRequest){
handleHttpRequest(ctx,(FullHttpRequest)msg);
}el if(msg instanceof WebSocketFrame){
handlerWebSocketFrame(ctx,(WebSocketFrame)msg);
考研现场确认
tri
}
super.channelRead(ctx, msg);
}
public void handlerWebSocketFrame(ChannelHandlerContext ctx, WebSocketFrame frame) throws Exception{
//关闭请求
if(frame instanceof CloWebSocketFrame){
handshaker.clo(ctx.channel(), (ain());
return;
}
//只⽀持⽂本格式,不⽀持⼆进制消息
if(!(frame instanceof TextWebSocketFrame)){
throw new Exception("仅⽀持⽂本格式");
}
}
//第⼀次请求是http请求,请求头包括ws的信息
public void handleHttpRequest(ChannelHandlerContext ctx, FullHttpRequest req){
if(!req.decoderResult().isSuccess()){
ndHttpRespon(ctx,req, new DefaultFullHttpRespon(HttpVersion.HTTP_1_1, HttpResponStatus.BAD_REQUEST));
return;
}
// 构造握⼿响应返回
WebSocketServerHandshakerFactory wsFactory = new WebSocketServerHandshakerFactory("ws:/"+ctx.channel()+ "/ws",null,fal); handshaker = wHandshaker(req);
// 请求头不合法, 导致handshaker没创建成功
if(handshaker == null){
WebSocketServerHandshakerFactory.ndUnsupportedVersionRespon(ctx.channel());
}el{
handshaker.handshake(ctx.channel(), req);
piccure}
}
public static void ndHttpRespon(ChannelHandlerContext ctx,FullHttpRequest req,DefaultFullHttpRespon res){
/
/ 返回应答给客户端
if (res.status().code() != 200){
ByteBuf buf = piedBuffer(res.status().toString(), ChartUtil.UTF_8);
}
// 如果是⾮Keep-Alive,关闭连接
ChannelFuture f = ctx.channel().writeAndFlush(res);
if (!isKeepAlive(req) || res.status().code() != 200){
f.addListener(ChannelFutureListener.CLOSE);
}
}
}
private static boolean isKeepAlive(FullHttpRequest req){
return fal;
}
//异常处理,netty默认是关闭channel
@Override
public void exceptionCaught(ChannelHandlerContext ctx, Throwable cau) throws Exception {
//输出⽇志高三家长会
cau.printStackTrace();
ctx.clo();
}
}
WebsocketServer.java (启动类)
wss;
bootstrap.ServerBootstrap;
channel.ChannelFuture;
channel.ChannelInitializer;
channel.ChannelOption;
channel.EventLoopGroup;
channel.nio.NioEventLoopGroup;
channel.socket.SocketChannel;
channel.socket.nio.NioServerSocketChannel;
dec.http.HttpObjectAggregator;
dec.http.HttpServerCodec;
handler.ssl.SslHandler;
handler.stream.ChunkedWriteHandler;
handler.timeout.IdleStateHandler;
import urrent.TimeUnit;
ssl.SSLContext;
ssl.SSLEngine;
public class WebsocketServer {
嵌入式linux培训
public static WebsocketServer instance;
public static final WebsocketServer getInstance(){
return instance;
}
private int port;
public WebsocketServer(int port) {
if(instance!=null){
return;
}
this.port = port;
try {
this.start();
烂漫是什么意思
instance=this;
} catch (Exception e) {
e.printStackTrace();
}
}
private void start() throws Exception{
EventLoopGroup bossGroup = new NioEventLoopGroup();
EventLoopGroup workerGroup = new NioEventLoopGroup();
try {