json加密以及解密,可实现简单的单点登陆
业务需求,A系统需要用到B系统的一个功能模块,A系统通过链接跳转B系统,没有登陆会被拦截跳转到登陆页面,我们可以将A系统的session拼成json,然后通过此方法加密并放在请求中发送给B系统,并在B系统解密后生成B系统session,以此实现简单的单点登陆。
代码如下,代码有详细注释:
package test.llb;
import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.DESKeySpec;
import javax.crypto.spec.IvParameterSpec;
/**
*
* 加密解密工具类
*
*/
public class Encrpt {
/**
* 解密数据
* @param value
* @param key
*/
public static String decrypt(String value, String key) throws Exception {
byte[] bytesrc = convertHexString(value);
Cipher cipher = Cipher.getInstance("DES/CBC/PKCS5Padding");
DESKeySpec desKeySpec = new DESKeySpec(key.getBytes("UTF-8"));
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
SecretKey secretKey = keyFactory.generateSecret(desKeySpec);
IvParameterSpec iv = new IvParameterSpec(key.getBytes("UTF-8"));
cipher.init(Cipher.DECRYPT_MODE, secretKey, iv);
byte[] retByte = cipher.doFinal(bytesrc);
return java.net.URLDecoder.decode(new String(retByte, "UTF-8"),"utf-8");
}
/**
* 加密数据
* @param value
* @param key
* @return
*/
public static String encrypt(String value, String key) {
String result = "";
try {
value = java.net.URLEncoder.encode(value, "utf-8");
result = toHexString(encryptByte(value, key))
.toUpperCase();
} catch (Exception ex) {
ex.printStackTrace();
return "";
}
return result;
}
public static byte[] encryptByte(String message, String key) throws Exception {
Cipher cipher = Cipher.getInstance("DES/CBC/PKCS5Padding");
DESKeySpec desKeySpec = new DESKeySpec(key.getBytes("UTF-8"));
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
SecretKey secretKey = keyFactory.generateSecret(desKeySpec);
IvParameterSpec iv = new IvParameterSpec(key.getBytes("UTF-8"));
cipher.init(Cipher.ENCRYPT_MODE, secretKey, iv);
return cipher.doFinal(message.getBytes("UTF-8"));
}
public static byte[] convertHexString(String ss) {
byte digest[] = new byte[ss.length() / 2];
for (int i = 0; i < digest.length; i++) {
String byteString = ss.substring(2 * i, 2 * i + 2);
int byteValue = Integer.parseInt(byteString, 16);
digest[i] = (byte) byteValue;
}
return digest;
}
public static String toHexString(byte b[]) {
StringBuffer hexString = new StringBuffer();
for (int i = 0; i < b.length; i++) {
String plainText = Integer.toHexString(0xff & b[i]);
if (plainText.length() < 2)
plainText = "0" + plainText;
hexString.append(plainText);
}
return hexString.toString();
}
public static void main(String[] args) throws Exception {
String key = "00000000";//解密和加密是的密码
String s = "{\"name\":\"zhangsan\",\"password\":\"123456\"}";//加密的数据
String ss = encrypt(s, key);//调用加密方法加密
String sss = decrypt(ss, key);//调用解密方法解密,需要传入加密后的字符串和加密是设置的密码
System.out.println("加密使用的密码:" + key);
System.out.println("加密前的数据为:" + s);
System.out.println("加密后的数据为:" + ss);
System.out.println("解密使用的密码:" + key);
System.out.println("解密前的数据为:" + ss);
System.out.println("解密后的数据为:" + sss);
}
}