Add an Appmattus (with OkHttp) CT-checked request

This seems to be the most common case of Appmattus, which is actually
quite widely used. It's not really certificate pinning, but certificate
transparency has better real world use cases, and causes equal problems
for MitM interception, so it's well worth including here as a test case.

Appmattus can be used in multiple scenarios, but OkHttp seems most
recommended and popular, and should be representative of most cases
anyway.

Author: pimterry

app/build.gradle

@@ -62,4 +62,5 @@ dependencies {
     implementation 'com.android.volley:volley:1.2.0'
     implementation 'com.datatheorem.android.trustkit:trustkit:1.1.3'
     implementation 'androidx.preference:preference-ktx:1.1.1'
-}
+    implementation 'com.appmattus.certificatetransparency:certificatetransparency-android:2.5.18'
+}

app/src/main/java/tech/httptoolkit/pinning_demo/MainActivity.kt

@@ -17,6 +17,7 @@ import com.android.volley.toolbox.BasicNetwork
 import com.android.volley.toolbox.HurlStack
 import com.android.volley.toolbox.NoCache
 import com.android.volley.toolbox.StringRequest
+import com.appmattus.certificatetransparency.certificateTransparencyInterceptor
 import com.datatheorem.android.trustkit.TrustKit
 import kotlinx.coroutines.Dispatchers
 import kotlinx.coroutines.GlobalScope
@@ -254,6 +255,31 @@ class MainActivity : AppCompatActivity() {
         }
     }
 
+    fun sendAppmattusCTChecked(view: View) {
+        GlobalScope.launch(Dispatchers.IO) {
+            onStart(R.id.appmattus_ct_checked)
+            try {
+                val appmattusInterceptor = certificateTransparencyInterceptor()
+                val client = OkHttpClient.Builder().apply {
+                    addNetworkInterceptor(appmattusInterceptor)
+                }.build()
+                val request = Request.Builder()
+                    .url("https://sha256.badssl.com")
+                    .build()
+
+                client.newCall(request).execute().use { response ->
+                    println("URL: ${request.url}")
+                    println("Response Code: ${response.code}")
+                }
+
+                onSuccess(R.id.appmattus_ct_checked)
+            } catch (e: Throwable) {
+                println(e)
+                onError(R.id.appmattus_ct_checked, e.toString())
+            }
+        }
+    }
+
     // Manually pinned by building an SSLContext that trusts only the correct certificate, and then
     // connecting with the native HttpsUrlConnection API:
     fun sendCustomContextPinned(view: View) {

app/src/main/res/layout/activity_main.xml

@@ -58,6 +58,13 @@
             android:onClick="sendTrustKitPinned"
             android:text="TrustKit pinned request" />
 
+        <Button
+            android:id="@+id/appmattus_ct_checked"
+            android:layout_width="match_parent"
+            android:layout_height="wrap_content"
+            android:onClick="sendAppmattusCTChecked"
+            android:text="Appmattus CT-checked request" />
+
         <Button
             android:id="@+id/custom_context_pinned"
             android:layout_width="match_parent"