Karl von Randow has released Charles 4.
“With Charles 4 you can now see HTTP 2 working, and you can use all of your familiar tools; Repeat, Breakpoints, and so on. You’ll spot HTTP 2 hosts in Charles as they use a different icon—with a lightning bolt!”
I just took it for a quick spin. The updated HTTP/2 support works as advertised.
If you’d like to try out Charles new HTTP/2 support with OkHttp, it’s three steps to configure OkHttp to trust Charles’ MITM certificate.
Export the certificate from Charles
From the Help menu, pick SSL Proxying and then Save Charles Root Certificate. Save it as a .pem file somewhere, then open it in your favorite text editor. You’ll see something like this:
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgIGAU9cHuWJMA0GCSqGSIb
IFByb3h5IEN1c3RvbSBSb290IENlcnRpZmljYXR
...
ieHLSeZtdIrL7cI45ILT4TkahmPVeZmVVCRwQ==
-----END CERTIFICATE-----
Import the certificate into OkHttp
OkHttp has an executable custom trust example that we’ll start with. Remove the example’s certificates. Paste the contents of the .pem file instead.
private InputStream trustedCertificatesInputStream() {
String charlesRootCa = ""
+ "-----BEGIN CERTIFICATE-----\n"
+ "MIIFfDCCBGSgAwIBAgIGAU9cHuWJMA0GCSqGSIb\n"
+ "IFByb3h5IEN1c3RvbSBSb290IENlcnRpZmljYXR\n"
+ "...\n"
+ "ieHLSeZtdIrL7cI45ILT4TkahmPVeZmVVCRwQ==\n"
+ "-----END CERTIFICATE-----\n";
return new Buffer()
.writeUtf8(charlesRootCa)
.inputStream();
}
Point OkHttp at the Proxy
The custom trust example should will set you up with an SSL socket factory and trust manager. All that’s left is to specify the proxy host. You’ll want to use something other than localhost if OkHttp and Charles are on different machines.
client = new OkHttpClient.Builder()
.sslSocketFactory(sslSocketFactory, trustManager)
.proxy(new Proxy(Proxy.Type.HTTP, new InetSocketAddress("localhost", 8888)))
.build();
Charles is good stuff. I’m very happy to see it continue growing. Download it here.