1.依赖
<dependency>
<groupId>org.bouncycastle</groupId>
<artifactId>bcprov-jdk15on</artifactId>
<version>1.60</version>
</dependency>
2.工具类
package com.zykj.zycx.utils;
/*import org.apache.commons.net.util.Base64;*/
import org.apache.commons.codec.binary.Base64;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import javax.crypto.Cipher;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
/**
* @author lc
* @version 1.0
* @date 2022/3/21 10:57
*/
public class AESUtil {
static Logger logger = LoggerFactory.getLogger(AESUtil.class);
// 密钥
public static String key = "AD42F6697B035B7580E4FEF93BE20BAD"; // 32位
private static String charset = "utf-8";
// 偏移量
private static int offset = 16;
// 加密器类型:加密算法为AES,加密模式为CBC,补码方式为PKCS5Padding
private static String transformation = "AES/CBC/PKCS5Padding";
// 算法类型:用于指定生成AES的密钥
private static String algorithm = "AES";
/**
* 加密
*
* @param content
* @return
*/
public static String encrypt(String content) {
return encrypt(content, key);
}
/**
* 解密
*
* @param content
* @return
*/
public static String decrypt(String content) {
return decrypt(content, key);
}
/**
* 加密
*
* @param content 需要加密的内容
* @param key 加密密码(也可以自己直接用这个)
* @return
*/
public static String encrypt(String content, String key) {
try {
//构造密钥
SecretKeySpec skey = new SecretKeySpec(key.getBytes(), algorithm);
//创建初始向量iv用于指定密钥偏移量(可自行指定但必须为128位),因为AES是分组加密,下一组的iv就用上一组加密的密文来充当
IvParameterSpec iv = new IvParameterSpec(key.getBytes(), 0, offset);
//创建AES加密器
Cipher cipher = Cipher.getInstance(transformation);
byte[] byteContent = content.getBytes(charset);
//使用加密器的加密模式
cipher.init(Cipher.ENCRYPT_MODE, skey, iv);
// 加密
byte[] result = cipher.doFinal(byteContent);
//使用BASE64对加密后的二进制数组进行编码
return new Base64().encodeToString(result);
} catch (Exception e) {
logger.info("", e);
}
return null;
}
/**
* AES(256)解密
*
* @param content 待解密内容
* @param key 解密密钥
* @return 解密之后
* @throws Exception
*/
public static String decrypt(String content, String key) {
try {
SecretKeySpec skey = new SecretKeySpec(key.getBytes(), algorithm);
IvParameterSpec iv = new IvParameterSpec(key.getBytes(), 0, offset);
Cipher cipher = Cipher.getInstance(transformation);
//解密时使用加密器的解密模式
cipher.init(Cipher.DECRYPT_MODE, skey, iv);// 初始化
byte[] result = cipher.doFinal(new Base64().decode(content));
return new String(result); // 解密
} catch (Exception e) {
logger.info("解密异常:", e);
}
return null;
}
// 通过秘钥判断code是否正确
public static boolean checkCode(String code, String key) {
String decrypt = decrypt(code, key);
if (decrypt != null) {
return true;
}
return false;
}
// 随机生成32位字符串
public static String generate32Str() {
return RandomUtils.getItemID(32);
}
public static void main(String[] args) {
String s = "BUSINESS_CARD";
String key = generate32Str();
System.out.println(key);
String encryptResultStr = encrypt(s,key);
// 加密
System.out.println("加密前:" + s);
System.out.println("加密后:" + encryptResultStr);
// 解密
System.out.println("解密后:" + decrypt(encryptResultStr, key));
System.out.println("符合:" + checkCode(encryptResultStr, key));
}
}
3.枚举
package com.zykj.zycx.common.enums;
import com.zykj.zycx.utils.AESUtil;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import java.security.Key;
import java.security.PrivateKey;
import java.util.Base64;
/**
* 商户key枚举
*
* @author lc
* @version 1.0
* @date 2022/3/21 10:41
*/
public enum BusinessEnum {
BUSINESS_CARD(3, "12s6z02yo6X1OjB458mb2E89d9bqDF1j", "adxyNQCC+Tf4HgQM1a6klw==");
private Integer businessId;
private String businessKey; // 加密的盐
private String businessCode; // 加密后的code
// 私有构造
BusinessEnum(int businessId, String businessKey, String businessCode) {
this.businessId = businessId;
this.businessKey = businessKey;
this.businessCode = businessCode;
}
// 通过key来校验code
public static boolean checkCode(BusinessEnum businessEnum) {
boolean check = AESUtil.checkCode(businessEnum.businessCode, businessEnum.businessKey);
return check;
}
public static boolean checkCode(String businessCode, String businessKey) {
boolean check = AESUtil.checkCode(businessCode, businessKey);
return check;
}
}