前端
准备工作:aes.js
核心代码:
<script type="text/javascript">
//获取后端产生的密钥key
function getKey(){
var result = null;
var url = "http://localhost:8080/TalentServeMS/login/getKey.action";
$.ajax({
type:"get",
url:url,
//dataType:"",
cache:false,
async:false,
data:"",
success:function(data) {
//alert("key:"+data);
//$("#KEY").val(data);
result = data;
},
error: function() {
//alert("失败!");
result = null;
}
});
return result;
}
//登录表单前端验证
function subLogin(){
var username = $("#username").val();
var password = $("#userpwd").val();
if (username==""|| username==null){
alert("用户名不得为空!");
return;
}else if (password==null||password == ""){
alert("密码不得为空!");
return;
}else{
// 获取key密钥
//var key = $("#KEY").val();
var k = null;
if(k==null){
k = getKey();
}
alert("k:"+k);
//console.log("key:"+key);
//对key进行处理
var key = CryptoJS.enc.Utf8.parse(k);
//对用户名加密
var u = CryptoJS.enc.Utf8.parse(username);
var u1 = CryptoJS.AES.encrypt(u, key,
{mode:CryptoJS.mode.ECB,padding: CryptoJS.pad.Pkcs7}).toString();
alert("用户名密文:"+u1);
//对密码加密
var srcs = CryptoJS.enc.Utf8.parse(password);
var mm = CryptoJS.AES.encrypt(srcs, key,
{mode:CryptoJS.mode.ECB,padding: CryptoJS.pad.Pkcs7}).toString();
alert("密码密文:"+mm);
//console.log("密文:"+mm);
//给后端赋值加密后的值
$("#username").val(u1);
$("#userpwd").val(mm);
//用户名解密
var decrypt = CryptoJS.AES.decrypt(u1, key, {mode:CryptoJS.mode.ECB,padding: CryptoJS.pad.Pkcs7});
var u2= CryptoJS.enc.Utf8.stringify(decrypt).toString();
alert("用户名明文:"+u2);
//密码解密
var decrypt = CryptoJS.AES.decrypt(mm, key, {mode:CryptoJS.mode.ECB,padding: CryptoJS.pad.Pkcs7});
var jm = CryptoJS.enc.Utf8.stringify(decrypt).toString();
alert("密码明文:"+jm);
$("#loginform").submit(); //通过form表单的id属性提交
}
}
</script>
后端
准备工作:无
核心代码:
package com.ynenginemap.util;
import java.math.BigInteger;
import java.util.Random;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.SecretKeySpec;
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.lang3.StringUtils;
import com.tongtech.tmqi.util.BASE64Decoder;
/**
* AES的加密/解密
* @author lf
* @date 2018年1月27日下午5:04:32
*/
public class AESEncryDecryptptUtil {
//用于生成key
public static final String ALLCHAR = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
//算法
private static final String ALGORITHMSTR = "AES/ECB/PKCS5Padding";
/**
* 返回一个定长的随机字符串(只包含大小写字母、数字)
*
* @param length
* 随机字符串长度
* @return 随机字符串
*/
public static String generateString(int length) {
StringBuffer sb = new StringBuffer();
Random random = new Random();
for (int i = 0; i < length; i++) {
sb.append(ALLCHAR.charAt(random.nextInt(ALLCHAR.length())));
}
return sb.toString();
}
/**
* 将byte[]转为各种进制的字符串
* @param bytes byte[]
* @param radix 可以转换进制的范围,从Character.MIN_RADIX到Character.MAX_RADIX,超出范围后变为10进制
* @return 转换后的字符串
*/
public static String binary(byte[] bytes, int radix){
return new BigInteger(1, bytes).toString(radix);// 这里的1代表正数
}
/**
* base 64 encode
* @param bytes 待编码的byte[]
* @return 编码后的base 64 code
*/
public static String base64Encode(byte[] bytes){
return Base64.encodeBase64String(bytes);
}
/**
* base 64 decode
* @param base64Code 待解码的base 64 code
* @return 解码后的byte[]
* @throws Exception
*/
public static byte[] base64Decode(String base64Code) throws Exception{
return StringUtils.isEmpty(base64Code) ? null : new BASE64Decoder().decodeBuffer(base64Code);
}
/**
* AES加密
* @param content 明文
* @param encryptKey 密钥
* @return 加密后的byte[]
* @throws Exception
*/
public static byte[] aesEncryptToBytes(String content, String encryptKey) throws Exception {
KeyGenerator kgen = KeyGenerator.getInstance("AES");
kgen.init(128);
Cipher cipher = Cipher.getInstance(ALGORITHMSTR);
cipher.init(Cipher.ENCRYPT_MODE, new SecretKeySpec(encryptKey.getBytes("utf-8"), "AES"));
return cipher.doFinal(content.getBytes("utf-8"));
}
/**
* AES解密
* @param encryptBytes 明文byte[]
* @param decryptKey 密钥
* @return 明文String
* @throws Exception
*/
public static String aesDecryptByBytes(byte[] encryptBytes, String decryptKey) throws Exception {
KeyGenerator kgen = KeyGenerator.getInstance("AES");
kgen.init(128);
Cipher cipher = Cipher.getInstance(ALGORITHMSTR);
cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(decryptKey.getBytes("utf-8"), "AES"));
byte[] decryptBytes = cipher.doFinal(encryptBytes);
//这句很重要,不设置“UTF-8”,会乱码
return new String(decryptBytes,"UTF-8");
}
/**
* fun:加密
* @param content 明文
* @param encryptKey 加密密钥
* @return 加密后的base 64 code
* @throws Exception
*/
public static String aesEncrypt(String content, String encryptKey) throws Exception {
return base64Encode(aesEncryptToBytes(content, encryptKey));
}
/**
* fun:解密
* @param encryptStr 明文base 64 code
* @param decryptKey 密钥
* @return 明文string
* @throws Exception
*/
public static String aesDecrypt(String encryptStr, String decryptKey) throws Exception {
return StringUtils.isEmpty(encryptStr) ? null : aesDecryptByBytes(base64Decode(encryptStr), decryptKey);
}
/**
* 测试
*/
/*public static void main(String[] args) throws Exception {
//随机生成16位定长的key密钥
//String KEY = generateString(16);
String KEY = "p8rHz6kddBQqov0s";
//明文
String content = "张三";
System.out.println("加密前:" + content);
System.out.println("密钥:" + KEY);
String encrypt = aesEncrypt(content, KEY);
System.out.println("加密后:" + encrypt);
String decrypt = aesDecrypt(encrypt, KEY);
System.out.println("解密后:" + decrypt);
} */
}
----------
//生成密钥key
/**
* fun:生成用于前后端加解密的key
* @author lf
* @date 2018年1月30日下午10:54:32
* @param session
* @return key
*/
@RequestMapping("getKey")
@ResponseBody
public String getKey(HttpSession session){
if (session.getAttribute("loginToken")==null) {
//在后端生成一个随机的16位字符串的key,存储在session中,用于前后端加密解密用。
session.setAttribute("loginToken",AESEncryDecryptptUtil.generateString(16));
System.out.println("产生key--->loginToken:"+session.getAttribute("loginToken"));
}
return (String)session.getAttribute("loginToken");
}
结尾:其中走了不少弯路,特记于此,也供大家学习借鉴,一起进步!