最近遇上在搭建SSM框架的时候遇上数据库配置文件需加密的需求,网上搜罗资料自己写了一份。主要是给自己以后好找!同时也希望能帮助大家
这里是根据DES方式进行加密解密的类
package net.merise.mir.core.encrypt;
import java.io.IOException;
import java.security.SecureRandom;
import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.DESKeySpec;
import sun.misc.BASE64Decoder;
import sun.misc.BASE64Encoder;
public class DESUtil {
private final static String DES = "DES";
public static void main(String[] args) throws Exception {
String data = "mirundba";
String key = "@abcdef@";
System.err.println(encrypt(data, key));
}
/**
* Description 根据键值进行加密
* @param data
* @param key 加密键byte数组
* @return
* @throws Exception
*/
public static String encrypt(String data, String key) throws Exception {
byte[] bt = encrypt(data.getBytes(), key.getBytes());
String strs = new BASE64Encoder().encode(bt);
return strs;
}
/**
* Description 根据键值进行解密
* @param data
* @param key 加密键byte数组
* @return
* @throws IOException
* @throws Exception
*/
public static String decrypt(String data, String key) throws IOException,
Exception {
if (data == null)
return null;
BASE64Decoder decoder = new BASE64Decoder();
byte[] buf = decoder.decodeBuffer(data);
byte[] bt = decrypt(buf,key.getBytes());
return new String(bt);
}
/**
* Description 根据键值进行加密
* @param data
* @param key 加密键byte数组
* @return
* @throws Exception
*/
private static byte[] encrypt(byte[] data, byte[] key) throws Exception {
// 生成一个可信任的随机数源
SecureRandom sr = new SecureRandom();
// 从原始密钥数据创建DESKeySpec对象
DESKeySpec dks = new DESKeySpec(key);
// 创建一个密钥工厂,然后用它把DESKeySpec转换成SecretKey对象
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(DES);
SecretKey securekey = keyFactory.generateSecret(dks);
// Cipher对象实际完成加密操作
Cipher cipher = Cipher.getInstance(DES);
// 用密钥初始化Cipher对象
cipher.init(Cipher.ENCRYPT_MODE, securekey, sr);
return cipher.doFinal(data);
}
/**
* Description 根据键值进行解密
* @param data
* @param key 加密键byte数组
* @return
* @throws Exception
*/
private static byte[] decrypt(byte[] data, byte[] key) throws Exception {
// 生成一个可信任的随机数源
SecureRandom sr = new SecureRandom();
// 从原始密钥数据创建DESKeySpec对象
DESKeySpec dks = new DESKeySpec(key);
// 创建一个密钥工厂,然后用它把DESKeySpec转换成SecretKey对象
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(DES);
SecretKey securekey = keyFactory.generateSecret(dks);
// Cipher对象实际完成解密操作
Cipher cipher = Cipher.getInstance(DES);
// 用密钥初始化Cipher对象
cipher.init(Cipher.DECRYPT_MODE, securekey, sr);
return cipher.doFinal(data);
}
}
这里是解密配置文件的类
<pre name="code" class="java">package net.merise.mir.core.encrypt;
import java.util.Properties;
import org.springframework.beans.BeansException;
import org.springframework.beans.factory.config.ConfigurableListableBeanFactory;
import org.springframework.beans.factory.config.PropertyPlaceholderConfigurer;
public class DBConfigurer extends PropertyPlaceholderConfigurer {
private final static String key = "@abcdef@";
private final static String URL = "url";
private final static String USER = "user";
private final static String PASSWORD = "password";
@Override
protected void processProperties(
ConfigurableListableBeanFactory beanFactory, Properties props)
throws BeansException {
String url = props.getProperty("url");
if (url != null)
try {
props.setProperty(URL, DESUtil.decrypt(url, key));
} catch (Exception e) {
e.printStackTrace();
}
String user = props.getProperty("user");
if (user != null)
try {
props.setProperty(USER, DESUtil.decrypt(user, key));
} catch (Exception e) {
e.printStackTrace();
}
String password = props.getProperty("password");
if (password != null)
try {
props.setProperty(PASSWORD, DESUtil.decrypt(password, key));
} catch (Exception e) {
e.printStackTrace();
}
super.processProperties(beanFactory, props);
}
}
<span style="font-family: Arial, Helvetica, sans-serif; background-color: rgb(255, 255, 255);">接下来是配置Spring MVC</span>
<!-- 属性文件读入,用于加密数据库配置文件 -->
<bean id="propertyConfigurer" class="net.maventec.mir.core.encrypt.DBConfigurer">
<property name="locations">
<list>
<value>classpath:config/db.properties</value>
</list>
</property>
</bean>
这是加密的配置文件
#数据库连接
driver=com.mysql.jdbc.Driver
url=aROE3XZWJAL1u0RpwMvhS1v0f8QyifbqaJDbkGu+b5iD8c/Pi3Ri+fSXkD9/1u1DYiKpIhgqce+aQfIw4cMq0g==
user=ZxV4aL2ZlUaudDFZJtxyAQ==
password=ZxV4aL2ZlUaudDFZJtxyAQ==
调用的配置文件
<!-- 配置数据源 -->
<bean name="dataSource" class="com.mchange.v2.c3p0.ComboPooledDataSource">
<property name="jdbcUrl" value="${url}" />
<property name="user" value="${user}" />
<property name="driverClass" value="${driver}" />
<property name="password" value="${password}" />
<property name="minPoolSize" value="5" />
<property name="maxPoolSize" value="50" />
<property name="initialPoolSize" value="10" />
</bean>
注意的是这两个的顺序不能反
<!-- 属性文件读入,用于加密数据库配置文件 -->
<bean id="propertyConfigurer" class="net.merise.mir.core.encrypt.DBConfigurer">
<property name="locations">
<list>
<value>classpath:config/db.properties</value>
</list>
</property>
</bean>
<!-- 配置需要交给spring扫描管理的文件,一般是项目的配置文件(由context提供) -->
<context:property-placeholder location="classpath:config/db.properties" />