就是记录下,也是从别人那里学习的。
+ (AFSecurityPolicy *)customSecurityPolicy
{
//先导入证书,找到证书的路径
NSString *cerPath = [[NSBundle mainBundle] pathForResource:@"localhost" ofType:@"cer"];
NSData *certData = [NSData dataWithContentsOfFile:cerPath];
//AFSSLPinningModeCertificate 使用证书验证模式
AFSecurityPolicy *securityPolicy = [AFSecurityPolicy policyWithPinningMode:AFSSLPinningModeCertificate];
//allowInvalidCertificates 是否允许无效证书(也就是自建的证书),默认为NO
//如果是需要验证自建证书,需要设置为YES
securityPolicy.allowInvalidCertificates = YES;
//validatesDomainName 是否需要验证域名,默认为YES;
securityPolicy.validatesDomainName = NO;
NSArray *set = [[NSArray alloc] initWithObjects:certData, nil];
securityPolicy.pinnedCertificates = set;
return securityPolicy;
}
+ (void)postWithURLString:(NSString *)urlString
parameters:(id)parameters
success:(void (^)(id responseObject))successBlock
failure:(void (^)(NSError *error))failureBlock
{
AFHTTPSessionManager *manager = [AFHTTPSessionManager manager];
manager.responseSerializer = [AFHTTPResponseSerializer serializer];
manager.requestSerializer.timeoutInterval = 15;
//HTTPS SSL的验证,在此处调用上面的代码,给这个证书验证;
[manager setSecurityPolicy:[self customSecurityPolicy]];
[manager POST:urlString parameters:parameters success:^(NSURLSessionDataTask *task, id responseObject) {
successBlock(responseObject);
} failure:^(NSURLSessionDataTask *task, NSError *error) {
failureBlock(error);
}];
}
