OAID证书检验工具类
使用通信院的oaid1.0.25之后的版本均需要为不同的包名进行申请对应的证书文件 证书文件的格式为:包名.cert.pem
将证书文件(应用包名.cert.pem)拷贝到项目 assets 目录下 一般由运营打包时独自上传打包资源进行合并打包 证书申请需要填写 example_batch.csv 后发送到 msa@caict.ac.cn 申请,注意每个包名对应一个签名,申请时需要将所需申请的全部包名填写到表格中。 证书有效期一年,为避免证书过期影响 APP 获取 ID,建议证书信息可以从后台服务器获取,或者当调用 oaid SDK 接口提示证书无效时,调用后台接口及时更新证书信息,并且快到期时及时提前重新申请证书。
初始化的时候可通过读取应用中asstes文件下的包名.cert.pem流的形式读取证书内容(证书为PEM文件中的所有文本内容(包括首尾行、换行符))并传给 MdidSdkHelper.InitCert()方法中,并得到证书是否有效或过期的结果
当前证书检测工具类证
1.优先使用assets文件中中的证书文件 并判断存在 2.优先使用上一次从服务器起拉去的证书缓存数据 有着直接使用并判断缓存证书的时效性并及时进行清除 无缓存证书数据直接走第三部 3.未配置证书文件、证书已过期无效、证书初始化异常 本地没有缓存或缓存失效 则从服务器加载证书 3.1 请求参数和返回数据格式需要和服务器约定,demo仅做参考
证书工具类使用方法
OaIdPemCheckUtils.initPem(cxt, new OaIdPemCheckUtils.CSPemCheckResult() {
@Override
public void pemIsValid(boolean result) {
Log.e("证书初始化结果",""+(result == true ? true : false));
if (result){
Log.e("tag","证书初始化成功,可获取进行oaid");
isCertInit = true;
getOaid(cxt);
}else {
Log.e("tag","证书初始化失败或异常,直接返回");
isCertInit = false;
if(appIdsUpdater ==null) {
Log.w(TAG, "onSupport: callbackListener is null");
return;
}
}
}
});
OAID证书检测工具类
import android.app.Application;
import android.content.Context;
import android.content.pm.ApplicationInfo;
import android.content.pm.PackageInfo;
import android.content.pm.PackageManager;
import android.content.res.AssetManager;
import android.os.Build;
import android.text.TextUtils;
import android.util.Log;
import com.bun.miitmdid.core.InfoCode;
import com.bun.miitmdid.core.MdidSdkHelper;
import com.bun.miitmdid.interfaces.IIdentifierListener;
import com.bun.miitmdid.interfaces.IdSupplier;
import com.bun.miitmdid.pojo.IdSupplierImpl;
import org.json.JSONObject;
import java.io.BufferedReader;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.lang.reflect.Method;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.Map;
/**
*
* OAID证书检测工具类
*/
public class OaIdPemCheckUtils {
private static String TAG = "OaIdPemCheckUtils";
private static String ASSET_FILE_NAME_CERT = "";//证书文件名
private static boolean isCertInit = false;//pem证书是否初始化成功
public static void initPem(final Context context, final CSPemCheckResult checkResult) {
Log.e("initPem ", ".....");
ASSET_FILE_NAME_CERT = context.getPackageName() + ".cert.pem";
Log.w(TAG, "ASSET_FILE_NAME_CERT:" + ASSET_FILE_NAME_CERT);
//检测证书是否存在 证书为当前应用的包名+"..cert.pem" 格式固定
boolean pemIsExist = checkAssetsFileExist(context, ASSET_FILE_NAME_CERT);
//1.优先使用assets文件中中的证书文件 并判断存在
if (pemIsExist) {
if (!isCertInit) { // 证书只需初始化一次
// 证书为PEM文件中的所有文本内容(包括首尾行、换行符)
try {
Log.e("initPem ", "-----use assets pem file");
isCertInit = MdidSdkHelper.InitCert(context, loadPemFromAssetFile(context, ASSET_FILE_NAME_CERT));
} catch (Error e) {
e.printStackTrace();
}
if (isCertInit) {
checkResult.pemIsValid(true);
return;
}
}
}
//2.优先使用上一次从服务器起拉去的证书缓存数据
String localPemData = (String) CSSharedPreferenceUtil.getPreference(context, context.getPackageName() + ".cert.pem", "");
if (!TextUtils.isEmpty(localPemData)) {
Log.e("initPem ", "-----use cache pem data");
isCertInit = MdidSdkHelper.InitCert(context, localPemData);
if (isCertInit) {
checkResult.pemIsValid(true);
return;
}else {
//缓存证书无效及时进行清除
CSSharedPreferenceUtil.savePreference(context, context.getPackageName() + ".cert.pem", "");
}
}
//3.未配置证书文件、证书已过期无效、证书初始化异常 本地没有缓存或缓存失效 则从服务器加载证书
if (!isCertInit) {
Map<String, Object> param = publicParam(context, "6688", "test", "2.0.0");
ArrayList<String> urls = new ArrayList<>();
urls.add(0, "https://www.test.com/");//域名可以配置多个 第一个域名请求失败自动切换下一个 当前域名请求成功保存当前域名下次优先使用
String urlScheme = "a/getoaidpem/";
CSRequestPemAsyTask.newInstance().doPost(context, urlScheme, param, urls, new CSRequestPemAsyTask.CSMasterHttpCallBack() {
@Override
public void onResponse(String response) {
try {
JSONObject json = new JSONObject(response);
Log.e(TAG, "onResponse json:" + json);
if (json.getString("status").equals("1") && json.has("data") && json.get("data") != null) {
JSONObject data = new JSONObject(json.getString("data"));
if (data.has("oaid_pem") && data.get("oaid_pem") != null) {
Log.e("initPem ", "-----use pull network pem data");
isCertInit = MdidSdkHelper.InitCert(context, data.getString("oaid_pem"));
if (isCertInit == true) {
//远程服务的获取的oaid证书有效则保存在本地
CSSharedPreferenceUtil.savePreference(context, context.getPackageName() + ".cert.pem", data.getString("oaid_pem"));
}
checkResult.pemIsValid(isCertInit == true ? true : false);
return;
}
}
} catch (Exception e) {
e.printStackTrace();
checkResult.pemIsValid(isCertInit == true ? true : false);
}
}
@Override
public void onCancel(String e) {
Log.e(TAG, "onResponse onCancel:" + e);
checkResult.pemIsValid(isCertInit == true ? true : false);
return;
}
});
}
}
/**
* 判断assets资源是否存在
*
* @param context 上下文
* @param fileName 资源名称
* @return
*/
private static Boolean checkAssetsFileExist(Context context, String fileName) {
AssetManager assetManager = context.getAssets();
try {
String[] list = assetManager.list("");
for (int i = 0; i < list.length; i++) {
// Log.e("Tag","name:"+list[i].toString());
if (list[i].contains(fileName)) {
return true;
}
}
} catch (IOException e) {
e.printStackTrace();
return false;
}
return false;
}
/**
* 从asset文件读取证书内容
*
* @param context
* @param assetFileName
* @return 证书字符串
*/
static String loadPemFromAssetFile(Context context, String assetFileName) {
try {
InputStream is = context.getAssets().open(assetFileName);
BufferedReader in = new BufferedReader(new InputStreamReader(is));
StringBuilder builder = new StringBuilder();
String line;
while ((line = in.readLine()) != null) {
builder.append(line);
builder.append('\n');
}
return builder.toString();
} catch (IOException e) {
Log.e(TAG, "loadPemFromAssetFile failed");
return "";
}
}
/**
* 拼接公共参数 样板
*
* @param context 上下文
* @param APPID 游戏id
* @param channelNumber 渠道名
* @param sdkver SDK版本号
* @return
*/
private static Map<String, Object> publicParam(Context context, String APPID, String channelNumber , String sdkver) {
String platform = "android"; // 设备类型(必填) android
String device_model = Build.MODEL; // 机型(必填)
String device_os = Build.VERSION.RELEASE; // 操作系统
String device_carrier = "无运营商"; // 运营商
String versionName = ""; // versionName
String versionCode = ""; // app versionCode
String appName = ""; // app Name
PackageManager pm = context.getPackageManager();
try {
PackageInfo packageInfo = pm.getPackageInfo(context.getPackageName(), 0);
versionCode = String.valueOf(packageInfo.versionCode);
versionName = packageInfo.versionName;
ApplicationInfo info = pm.getApplicationInfo(context.getPackageName(), 0);
appName = info.loadLabel(pm).toString();
} catch (Exception e) {
e.printStackTrace();
}
Map<String, Object> map = new HashMap<String, Object>();
map.put("appName", appName);
map.put("packageName", context.getPackageName());
map.put("versionCode", versionCode);//
map.put("versionName", versionName);
map.put("platform", "" + platform);
map.put("device_model", "" + device_model);
map.put("device_os", "" + device_os);
map.put("device_carrier", "" + device_carrier);
map.put("sdkver", "" + sdkver);
map.put("APPID", "" + APPID);
map.put("channelNumber", "" + channelNumber);
return map;
}
public interface CSPemCheckResult {
void pemIsValid(boolean result);
}
}
证书数据网络请求类
import android.content.Context;
import android.os.AsyncTask;
import android.text.TextUtils;
import android.util.Log;
import java.io.ByteArrayOutputStream;
import java.io.DataOutputStream;
import java.io.IOException;
import java.io.InputStream;
import java.net.HttpCookie;
import java.net.HttpURLConnection;
import java.net.ProtocolException;
import java.net.URL;
import java.nio.charset.StandardCharsets;
import java.util.ArrayList;
import java.util.HashMap;
import java.util.LinkedList;
import java.util.List;
import java.util.Map;
/**
* 证书数据网络请求类
*/
public class CSRequestPemAsyTask extends AsyncTask<Object, Void, String> {
static final String COOKIES_HEADER = "Set-Cookie";
static java.net.CookieManager msCookieManager = new java.net.CookieManager();
private static final String TAG = "CSRequestPemAsyTask";
private static final int TIME_OUT = 5 * 1000;
private static final int MAX_RETRY_TIME = 6;
private int retryCount;
private CSMasterHttpCallBack callBack;
private Context mContext;
private static String exception;
private ArrayList<String> arrayList;
private CSRequestPemAsyTask() {
}
public static CSRequestPemAsyTask newInstance() {
return new CSRequestPemAsyTask();
}
// 获取连接返回的数据
private static byte[] readStream(InputStream inputStream) throws Exception {
byte[] buffer = new byte[1024];
int len;
ByteArrayOutputStream baos = new ByteArrayOutputStream();
while ((len = inputStream.read(buffer)) != -1) {
baos.write(buffer, 0, len);
}
byte[] data = baos.toByteArray();
inputStream.close();
baos.close();
return data;
}
@Override
protected void onPreExecute() {
super.onPreExecute();
}
public void doPost(Context context, String url, Map<String, Object> paramMap, ArrayList<String> arrayListUrl, CSMasterHttpCallBack callBack) {
this.mContext = context;
this.callBack = callBack;
this.arrayList=arrayListUrl;
if (paramMap == null) {
paramMap = new HashMap<>();
}
execute(url, paramMap, "POST");
}
@Override
protected String doInBackground(Object... arg0) {
List<String> avaiableURL = new LinkedList<>(arrayList);
String result = null;
while (result == null && retryCount < arrayList.size() && avaiableURL.size() > 0) {
if (isCancelled()) {
return null;
}
try {
String urlScheme = (String) arg0[0];
String baseUrl;
String url;
if (retryCount == 0) {
//优先使用上次从服务器拉去oaid证书成功的域名
if (CSSharedPreferenceUtil.contains(mContext, "cs_oaid_pem_request_ok_url")) {
baseUrl = (String) CSSharedPreferenceUtil.getPreference(mContext, "cs_oaid_pem_request_ok_url", "");
if (TextUtils.isEmpty(baseUrl)) {
baseUrl = arrayList.get(0);
Log.e(TAG,"baseUrl:"+baseUrl);
}
} else {
baseUrl =arrayList.get(0);
}
} else {
baseUrl = avaiableURL.get(0);
}
url = baseUrl + urlScheme;
avaiableURL.remove(baseUrl);
String paramStr="";
paramStr = prepareParam((HashMap<String, Object>) arg0[1]);
Log.e(TAG, "第" + retryCount + "次请求");
Log.e(TAG, "请求URL:" + url);
Log.e(TAG, "请求参数:" + paramStr);
HttpURLConnection urlConn = null;
String requestMethod = (String) arg0[2];
if ("POST".equals(requestMethod)) {
urlConn = (HttpURLConnection) new URL(url).openConnection();
urlConn.setRequestMethod("POST");
// Post请求必须设置允许输出
urlConn.setDoOutput(true);
} else if ("GET".equals(requestMethod)) {
urlConn = (HttpURLConnection) new URL(url + "?" + paramStr).openConnection();
urlConn.setRequestMethod("GET");
}
if (msCookieManager.getCookieStore().getCookies().size() > 0) {
urlConn.setRequestProperty("Cookie",
TextUtils.join(";", msCookieManager.getCookieStore().getCookies()));
}
// 设置连接超时时间
urlConn.setConnectTimeout(TIME_OUT);
// Post请求不能使用缓存
urlConn.setUseCaches(false);
urlConn.setInstanceFollowRedirects(true);
urlConn.setRequestProperty("Charset", "UTF-8");
// 开始连接
urlConn.connect();
// 发送请求参数
if ("POST".equals(requestMethod)) {
DataOutputStream dos = new DataOutputStream(urlConn.getOutputStream());
dos.write(paramStr.getBytes(StandardCharsets.UTF_8));
dos.flush();
dos.close();
}
Map<String, List<String>> headerFields = urlConn.getHeaderFields();
List<String> cookiesHeader = headerFields.get(COOKIES_HEADER);
if (cookiesHeader != null) {
for (String cookie : cookiesHeader) {
msCookieManager.getCookieStore().add(null, HttpCookie.parse(cookie).get(0));
}
}
// 判断请求是否成功
if (urlConn.getResponseCode() == 200) {
//保存本次从服务器拉去oaid证书成功的域名
CSSharedPreferenceUtil.savePreference(mContext, "cs_oaid_pem_request_ok_url", baseUrl);
// 获取返回的数据
byte[] data = readStream(urlConn.getInputStream());
result = new String(data, StandardCharsets.UTF_8);
Log.e(TAG, "请求成功,返回数据如下:" + result);
} else {
Log.e(TAG, "请求失败:"+urlConn.getResponseCode());
result = null;
exception="请求失败";
}
} catch (ProtocolException e) {
Log.e(TAG, "CSRequestPemAsyTask-ProtocolException");
e.printStackTrace();
result = null;
exception=e.toString();
} catch (IOException e) {
Log.e(TAG, "CSRequestPemAsyTask-IOException");
e.printStackTrace();
result = null;
exception=e.toString();
} catch (Exception e) {
result = null;
Log.e(TAG, "CSRequestPemAsyTask-Exception" + e.toString());
e.printStackTrace();
exception=e.toString();
}
retryCount++;
}
return result;
}
@Override
protected void onPostExecute(String result) {
super.onPostExecute(result);
if (callBack != null && !isCancelled()) {
Log.i(TAG, "网络请求:onPostExecute:" + result);
if (result != null) {
callBack.onResponse(result);
} else {
callBack.onCancel(exception);
}
callBack = null;
}
}
@Override
protected void onCancelled() {
super.onCancelled();
if (callBack != null) {
Log.e(TAG, "网络请求:onCancelled()");
callBack.onCancel(exception);
callBack = null;
}
}
//拼接请求参数
public static String prepareParam(Map<String, Object> paramMap) {
StringBuffer sb = new StringBuffer();
if (paramMap.isEmpty()) {
return "";
} else {
for (String key : paramMap.keySet()) {
Object value = paramMap.get(key);
if (sb.length() < 1) {
sb.append(key).append("=").append(value);
} else {
sb.append("&").append(key).append("=").append(value);
}
}
return sb.toString();
}
}
public interface CSMasterHttpCallBack {
void onResponse(String response);
void onCancel(String e);
}
}
请求服务器参数和返回参数样式demo
post请求参数 供参考
应用idAPPID6688设备型号device_modelNE2210应用名称appName证书工具SDK版本号sdkver2.0.0渠道名channelNumbertest应用包名packageNamecom.lugao.app网络运营商device_carrier无运营商应用版本名versionName1.0设备版本号device_os12应用版本号versionCode1平台类型platformandroid
POST /a/getoaidpem/ HTTP/1.1
Charset: UTF-8
Content-Type: application/x-www-form-urlencoded
User-Agent: Dalvik/2.1.0 (Linux; U; Android 12; NE2210 Build/SKQ1.211019.001)
Host: www.test.com
Connection: Keep-Alive
Accept-Encoding: gzip
Content-Length: 190
APPID=6688&device_model=NE2210&appName=证书工具&sdkver=2.0.0&channelNumber=test&packageName=com.lugao.app&device_carrier=无运营商&versionName=1.0&device_os=12&versionCode=1&platform=android
服务器返回数据样式 仅供参考
{
"status": 1,
"msg": "\u6210\u529f",
"data": {
"oaid_pem": "-----BEGIN CERTIFICATE-----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\nkA7BaUo9R2FKlrMnFQXcSQfQXoQAJ8bLqTF8MqrQ/iM=\n-----END CERTIFICATE-----\n"
}
}
