Disable cert validation for JNDI https connector

qtc-de · Sep 28, 2023 · 22ae273 · 22ae273
1 parent c6ecd62
commit 22ae273
Showing 1 changed file with 19 additions and 0 deletions.
diff --git a/beanshooter/src/de/qtc/beanshooter/plugin/providers/JNDIProvider.java b/beanshooter/src/de/qtc/beanshooter/plugin/providers/JNDIProvider.java
@@ -4,20 +4,25 @@
 import java.lang.reflect.InvocationTargetException;
 import java.lang.reflect.Method;
 import java.net.MalformedURLException;
+import java.security.KeyManagementException;
+import java.security.NoSuchAlgorithmException;
 import java.security.cert.CertPathValidatorException;
 import java.util.Map;
 
 import javax.management.MBeanServerConnection;
 import javax.management.remote.JMXConnector;
 import javax.management.remote.JMXConnectorFactory;
 import javax.management.remote.JMXServiceURL;
+import javax.net.ssl.SSLContext;
+import javax.net.ssl.X509TrustManager;
 import javax.security.auth.callback.UnsupportedCallbackException;
 
 import de.qtc.beanshooter.cli.ArgumentHandler;
 import de.qtc.beanshooter.exceptions.AuthenticationException;
 import de.qtc.beanshooter.exceptions.ExceptionHandler;
 import de.qtc.beanshooter.exceptions.GlassFishException;
 import de.qtc.beanshooter.io.Logger;
+import de.qtc.beanshooter.networking.DummyTrustManager;
 import de.qtc.beanshooter.operation.BeanshooterOperation;
 import de.qtc.beanshooter.operation.BeanshooterOption;
 import de.qtc.beanshooter.plugin.IMBeanServerProvider;
@@ -42,6 +47,20 @@ public MBeanServerConnection getMBeanServerConnection(String host, int port, Map
         MBeanServerConnection mBeanServerConnection = null;
         String connString = ArgumentHandler.require(BeanshooterOption.CONN_JNDI);
 
+        try
+        {
+            SSLContext trustAllContext = SSLContext.getInstance("TLS");
+            trustAllContext.init(null, new X509TrustManager[] {new DummyTrustManager()}, null);
+            SSLContext.setDefault(trustAllContext);
+        }
+
+        catch (NoSuchAlgorithmException | KeyManagementException e)
+        {
+            Logger.eprintlnMixedBlue("Unable to set", "trust-all SSLContext", "- Cert validation might cause problems.");
+            ExceptionHandler.showStackTrace(e);
+            Logger.lineBreak();
+        }
+
         if (!connString.contains("://"))
         {
             if (connString.startsWith("service:jmx:rmi"))