一、前端
1.前端安装依赖并引入js:AESutils.js
npm install crypto-js@4.0.0
import CryptoJS from 'crypto-js';
const key = CryptoJS.enc.Utf8.parse("AESNBHB3ZA==HKXt");
//说明:
// 1.如果加密解密涉及到前端和后端,则这里的key要保持和后端的key一致
// 2.AES的算法模式有好几种(ECB,CBC,CFB,OFB),所以也要和后端保持一致
// 3.AES的补码方式有两种(PKS5,PKS7),所以也要和后端保持一致
// 4.AES的密钥长度有三种(128,192,256,默认是128),所以也要和后端保持一致
// 5.AES的加密结果编码方式有两种(base64和十六进制),具体怎么选择由自己定,但是加密和解密的编码方式要统一
export default {
/**
* [encrypt 加密]
* @return {[type]} [description]
*/
encrypt: function (content) {
var encryptedData = CryptoJS.AES.encrypt(content, key, {
mode: CryptoJS.mode.ECB,
padding: CryptoJS.pad.Pkcs7
});
return encryptedData.toString();
},
/**
* [decrypt 解密]
* @return {[type]} [description]
*/
decrypt(content) {
var encryptedHexStr = CryptoJS.enc.Base64.parse(content);
var encryptedBase64Str = CryptoJS.enc.Base64.stringify(encryptedHexStr);
var decryptedData = CryptoJS.AES.decrypt(encryptedBase64Str, key, {
mode: CryptoJS.mode.ECB,
padding: CryptoJS.pad.Pkcs7
});
return decryptedData.toString(CryptoJS.enc.Utf8);
}
};
2.使用
import aes from "../assets/js/AESutils";
...
this.loginUser.password = aes.encrypt(this.loginUser.password);//密码加密传输
二、后端
1.引用AESVueUtil
package com.epf.common.utils;
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.lang3.StringUtils;
import sun.misc.BASE64Decoder;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.SecretKeySpec;
import java.math.BigInteger;
public class AESVueUtil {
//算法 AES/ECB/PKCS5Padding
private static final String ALGORITHMSTR = "AES";
private static String AES_KEY = "AESNBHB3ZA==HKXt";
/**
* aes解密
* @param encrypt 内容
* @return
* @throws Exception
*/
public static String aesDecrypt(String encrypt) {
try {
return aesDecrypt(encrypt, AES_KEY);
} catch (Exception e) {
e.printStackTrace();
return "";
}
}
/**
* aes加密
* @param content
* @return
* @throws Exception
*/
public static String aesEncrypt(String content) {
try {
return aesEncrypt(content, AES_KEY);
} catch (Exception e) {
e.printStackTrace();
return "";
}
}
/**
* 将byte[]转为各种进制的字符串
* @param bytes byte[]
* @param radix 可以转换进制的范围,从Character.MIN_RADIX到Character.MAX_RADIX,超出范围后变为10进制
* @return 转换后的字符串
*/
public static String binary(byte[] bytes, int radix){
return new BigInteger(1, bytes).toString(radix);// 这里的1代表正数
}
/**
* base 64 encode
* @param bytes 待编码的byte[]
* @return 编码后的base 64 code
*/
public static String base64Encode(byte[] bytes){
return Base64.encodeBase64String(bytes);
}
/**
* base 64 decode
* @param base64Code 待解码的base 64 code
* @return 解码后的byte[]
* @throws Exception
*/
public static byte[] base64Decode(String base64Code) throws Exception{
return StringUtils.isEmpty(base64Code) ? null : new BASE64Decoder().decodeBuffer(base64Code);
}
/**
* AES加密
* @param content 待加密的内容
* @param encryptKey 加密密钥
* @return 加密后的byte[]
* @throws Exception
*/
public static byte[] aesEncryptToBytes(String content, String encryptKey) throws Exception {
KeyGenerator kgen = KeyGenerator.getInstance("AES");
kgen.init(128);
Cipher cipher = Cipher.getInstance(ALGORITHMSTR);
cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(encryptKey.getBytes(), "AES"));
return cipher.doFinal(content.getBytes("utf-8"));
}
/**
* AES加密为base 64 code
* @param content 待加密的内容
* @param encryptKey 加密密钥
* @return 加密后的base 64 code
* @throws Exception
*/
public static String aesEncrypt(String content, String encryptKey) throws Exception {
return base64Encode(aesEncryptToBytes(content, encryptKey));
}
/**
* AES解密
* @param encryptBytes 待解密的byte[]
* @param decryptKey 解密密钥
* @return 解密后的String
* @throws Exception
*/
public static String aesDecryptByBytes(byte[] encryptBytes, String decryptKey) throws Exception {
KeyGenerator kgen = KeyGenerator.getInstance("AES");
kgen.init(128);
Cipher cipher = Cipher.getInstance(ALGORITHMSTR);
cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(decryptKey.getBytes(), "AES"));
byte[] decryptBytes = cipher.doFinal(encryptBytes);
return new String(decryptBytes);
}
/**
* 将base 64 code AES解密
* @param encryptStr 待解密的base 64 code
* @param decryptKey 解密密钥
* @return 解密后的string
* @throws Exception
*/
public static String aesDecrypt(String encryptStr, String decryptKey) throws Exception {
return StringUtils.isEmpty(encryptStr) ? null : aesDecryptByBytes(base64Decode(encryptStr), decryptKey);
}
/**
* 测试
* 前端js将参数加密提交到后台如何解密
* 首先获取服务端的私钥:将客户端的公钥加密后获得的结果
* 通过服务端的私钥和客户端传递的加密字符串即可实现解密
*/
public static void main(String[] args) throws Exception {
String content = "123456";
System.out.println("加密前:" + content);
System.out.println("加密密钥和解密密钥:" + AES_KEY);
String encrypt = aesEncrypt(content, AES_KEY);
System.out.println("加密后:" + encrypt);
String decrypt = aesDecrypt(encrypt, AES_KEY);
System.out.println("解密后:" + decrypt);
//js加密后的字符串: tLWpQV+OIFZOWO7yp00Ruw==
String jsData = aesDecrypt("tLWpQV+OIFZOWO7yp00Ruw==", AES_KEY);
System.out.println("前端数据解密后的值:" + jsData);
}
}
2.使用
import com.epf.common.utils.AESVueUtil;
...
password = AESVueUtil.aesDecrypt(password); //解密