之前一直搞不清楚md5加密,从网上查了好多资料、看了几个视频都没实现成功。这一次参加学校的集中实习,培训老师带我们简单实现了一下。
要简单实现并不难,先从网上down一个简单的md5算法:
package com.train.util;
import java.math.BigInteger;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
public class MD5Utils {
/**
* 使用md5的算法进行加密
*/
public static String md5(String plainText) {
byte[] secretBytes = null;
try {
secretBytes = MessageDigest.getInstance("md5").digest(
plainText.getBytes());
} catch (NoSuchAlgorithmException e) {
throw new RuntimeException("没有md5这个算法!");
}
String md5code = new BigInteger(1, secretBytes).toString(16);// // 16进制数字
// 如果生成数字未满32位,需要前面补0
for (int i = 0; i < 32 - md5code.length(); i++) {
md5code = "0" + md5code;
}
return md5code;
}
}
然后在 Servlet或者控制器里直接调用MD5的这个静态方法就可以了:
protected void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
request.setCharacterEncoding("utf-8");
String userName = request.getParameter("userName");
String passWord = MD5Utils.md5(request.getParameter("passWord"));
userModel model = new userModel();
model.setUserName(userName);
model.setPassWord(passWord);
userService service = new userService();
try {
userModel m = service.selectByName(model.getUserName());
if (m == null) { // 如果找不到同名的记录,则可以注册
int i = service.save(model);
if (i > 0) {
request.setAttribute("msg", "注册成功!请登录!");
request.getRequestDispatcher("login.jsp").forward(request, response);
} else {
request.setAttribute("msg", "注册失败!请重新注册!");
request.getRequestDispatcher("index.jsp").forward(request, response);
}
} else {
request.setAttribute("msg", "用户名重复!请重新注册!");
request.getRequestDispatcher("index.jsp").forward(request, response);
}
} catch (Exception e) {
e.printStackTrace();
}
}
这样注册进去的就是经过md5加密后的密文了。
然后登录功能要比对密码的时候,从数据库中取出的是密文,需要将用户输入的密码再进行md5加密以后再比对,否则就会失败:
protected void doPost(HttpServletRequest request, HttpServletResponse response)
throws ServletException, IOException {
request.setCharacterEncoding("utf-8");
String userName = request.getParameter("userName");
String passWord = MD5Utils.md5(request.getParameter("passWord"));
userModel model = new userModel();
model.setUserName(userName);
model.setPassWord(passWord);
userService service = new userService();
if (request.getSession().getAttribute("checkcode_session").equals(request.getParameter("checkCode"))) {
try {
userModel md = service.selectByNameAndPass(model);
if (md != null) {
// 找到记录,登录成功
request.getSession().setAttribute("userName", md.getUserName());
request.getRequestDispatcher("welcome.jsp").forward(request, response);
} else {
request.setAttribute("msg", "登录失败!请重试!");
request.getRequestDispatcher("login.jsp").forward(request, response);
}
} catch (Exception e) {
e.printStackTrace();
}
} else {
request.setAttribute("msg", "验证码输入有误!请重试!");
request.getRequestDispatcher("login.jsp").forward(request, response);
}
}