看到另外一个大哥代码:https://blog.csdn.net/NepalTrip/article/details/90447798
import org.apache.commons.codec.binary.Base64;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.security.AlgorithmParameters;
import java.security.Key;
import java.security.Security;
public class WxUtils {
/**
* * 微信 数据解密<br/>
* * 对称解密使用的算法为 AES-128-CBC,数据采用PKCS#7填充<br/>
* * 对称解密的目标密文:encrypted=Base64_Decode(encryptData)<br/>
* * 对称解密秘钥:key = Base64_Decode(session_key),aeskey是16字节<br/>
* * 对称解密算法初始向量:iv = Base64_Decode(iv),同样是16字节<br/>
* *
* * @param encrypted 目标密文
* * @param session_key 会话ID
* * @param iv 加密算法的初始向量
*
*/
public static String wxDecrypt(String encrypted, String session_key, String iv) {
String result = null;
byte[] encrypted64 = Base64.decodeBase64(encrypted);
byte[] key64 = Base64.decodeBase64(session_key);
byte[] iv64 = Base64.decodeBase64(iv);
try {
init();
result = new String(decrypt(encrypted64, key64, generateIV(iv64)));
} catch (Exception e) {
e.printStackTrace();
}
return result;
}
/**
* * 初始化密钥
*
*/
public static void init() throws Exception {
Security.addProvider(new org.bouncycastle.jce.provider.BouncyCastleProvider());
KeyGenerator.getInstance(WxConstant.AES).init(128);
}
/**
* * 生成iv
*
*/
public static AlgorithmParameters generateIV(byte[] iv) throws Exception {
// iv 为一个 16 字节的数组,这里采用和 iOS 端一样的构造方法,数据全为0
// Arrays.fill(iv, (byte) 0x00);
AlgorithmParameters params = AlgorithmParameters.getInstance(WxConstant.AES);
params.init(new IvParameterSpec(iv));
return params;
}
/**
* * 生成解密
*
*/
public static byte[] decrypt(byte[] encryptedData, byte[] keyBytes, AlgorithmParameters iv)
throws Exception {
Key key = new SecretKeySpec(keyBytes, WxConstant.AES);
Cipher cipher = Cipher.getInstance(WxConstant.AES_CBC_PADDING);
// 设置为解密模式
cipher.init(Cipher.DECRYPT_MODE, key, iv);
return cipher.doFinal(encryptedData);
}
}
public class WxConstant {
public static final String appid = "你的appid";
public static final String secret = "你的secret";
public static final String AES = "AES";
public static final String AES_CBC_PADDING = "AES/CBC/PKCS7Padding";
}
我这边是根据openid缓存sessionkey。
结果报IllegalBlockSizeException:last block incomplete in decryption问题,
public class WeiXinMiniPartybuildController {
@Inject
WeixinMiniProgramPlugin weixinMiniProgramPlugin;
@CrossOrigin
@GetMapping("/getOpenid")
public ResponseEntity<?> getOpenid(String code){
return ResponseEntity.ok(weixinMiniProgramPlugin.getJscode2session(code));
}
@CrossOrigin
@PostMapping(path = "/getPhoneNumber",produces = MediaType.APPLICATION_JSON_VALUE)
@JsonView(BaseEntity.BaseView.class)
public ResponseEntity<?> getPhoneNumber(String encryptedData,String iv,String openid){
String session_key = weixinMiniProgramPlugin.getSessionKey(openid);
if (StringUtils.isEmpty(session_key)) {
return Results.UNPROCESSABLE_ENTITY;
}
try {
//这里
encryptedData = URLDecoder.decode(encryptedData, "UTF-8");
String result = WxUtils.wxDecrypt(encryptedData, session_key, iv);
return ResponseEntity.ok(result);
} catch (Exception e) {
System.out.println(e.toString());
}
return null;
}
}
后来看到帖子