- 首先引入Maven依赖
<!--对properties文件加密 --> <dependency> <groupId>com.github.ulisesbocchio</groupId> <artifactId>jasypt-spring-boot-starter</artifactId> <version>2.1.1</version> </dependency>
2.此时我们需要写个util 写上我们的加密,解密步骤
/** 默认key */
public final static String KEY = "147852369012345";
/**
* DES加密
*
*
* @param data
* 待加密字符串
* @param key
* 校验位
* @return
*/
public static String encrypt(String data,String key) {
String encryptedData = null;
try {
// DES算法要求有一个可信任的随机数源
SecureRandom sr = new SecureRandom();
DESKeySpec deskey = new DESKeySpec(key.getBytes());
// 创建一个密匙工厂,然后用它把DESKeySpec转换成一个SecretKey对象
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("des");
SecretKey secretKey = keyFactory.generateSecret(deskey);
// 加密对象
Cipher cipher = Cipher.getInstance("des");
cipher.init(Cipher.ENCRYPT_MODE, secretKey, sr);
// 加密,并把字节数组编码成字符串
encryptedData = Base64.encodeBase64String(cipher.doFinal(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("加密错误,错误信息:", e);
}
return encryptedData;
}
/**
* DES解密
*
*
* @param cryptData
* 待解密密文
* @param key
* 校验位
* @return
*/
public static String decrypt(String cryptData,String key) {
String decryptedData = null;
try {
// DES算法要求有一个可信任的随机数源
SecureRandom sr = new SecureRandom();
DESKeySpec deskey = new DESKeySpec(key.getBytes());
// 创建一个密匙工厂,然后用它把DESKeySpec转换成一个SecretKey对象
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
SecretKey secretKey = keyFactory.generateSecret(deskey);
// 解密对象
Cipher cipher = Cipher.getInstance("DES");
cipher.init(Cipher.DECRYPT_MODE, secretKey, sr);
// 把字符串解码为字节数组,并解密
byte[] inputByte = Base64.decodeBase64(cryptData.getBytes());
decryptedData = new String(cipher.doFinal(inputByte));
} catch (Exception e) {
throw new RuntimeException("解密错误,错误信息:", e);
}
return decryptedData;
}
具体信息可查看注解。此时我们需要再写个测试类来测试一下是否可以加密解密
通过测试,发现我们加解密都正确,没有乱码。
接下来添加配置类
import com.ulisesbocchio.jasyptspringboot.EncryptablePropertyResolver;
import org.junit.Test;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.util.StringUtils;
@Configuration
public class EncryptionPropertyConfig {
@Bean(name = "encryptablePropertyResolver")
public EncryptablePropertyResolver encryptablePropertyResolver() {
return new EncryptionPropertyResolver();
}
class EncryptionPropertyResolver implements EncryptablePropertyResolver {
@Override
public String resolvePropertyValue(String value) {
if (StringUtils.isEmpty(value)) {
return value;
}
// 值以DES@开头的均为DES加密,需要解密
if (value.startsWith("DES@")) {
return resolveDESValue(value.substring(4));
}
// 不需要解密的值直接返回
return value;
}
private String resolveDESValue(String value) {
// 自定义DES密文解密
return DesUtil.decrypt(value, DesUtil.KEY);
}
}
}
最后只需要修改application.yml文件即可。
datasource: business: type: com.alibaba.druid.pool.DruidDataSource driver-class-name: com.mysql.cj.jdbc.Driver url: DES@3RasufbW5ZmRGRp8ACWQfAG84xMP+aU+B7EZ7MVeXWqCXc3/1HICUYRbvHHlZkdFneVyQGDuZ6FZCbsH+mjkluBaWATgEfvqr1wjwcORvcVOCv2EnOVpWPFZBKp5eJ+D6k637EBfvsqGDXH+wiFmh7pVP6M1k2Qk username: DES@V7LY46F2pQQ= password: DES@H7JjS1W84sCJHcprW1LvBg==