AES加密
目的
为了保证登录的安全性,从而把用户输入的用户名密码采用aes/cbc模式加密成一个字符串,然后传给后端,后端在进行解密并验证
废话不多说,上代码:
import com.alibaba.fastjson.JSONObject;
import javax.crypto.Cipher;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.util.Objects;
public class AESUtil {
private final static String KEY = "1111111111111111"; // key:必须16个字符,且要和前端保持一致
private final static String IV = "1111111111111111"; // 偏移量:必须16个字符,且要和前端保持一致
public static void main(String[] args) {
JSONObject map = new JSONObject();
map.put("username","11111111");
map.put("password","11111111");
//加密
String encrypted = encrypt(map.toString());
//解密
String decrypted = decrypt("3220A42B22540A2B55F3C4CBF8AD0BFCDCFC1DCED69F96F9A36823A44FF13DC341EF436DBD6BFB3983577B7271193ACE");
System.out.println("加密前:" + map);
System.out.println("加密后:" + encrypted);
System.out.println("解密后:" + decrypted);
}
/**
* 加密返回的数据转换成 String 类型
*
* @param content 明文
*/
public static String encrypt(String content) {
return parseByte2HexStr(Objects.requireNonNull(aesCbcEncrypt(content.getBytes(), KEY.getBytes(), IV.getBytes())));
}
/**
* 将解密返回的数据转换成 String 类型
*
* @param content Base64编码的密文
*/
public static String decrypt(String content) {
return new String(Objects.requireNonNull(aesCbcDecrypt(parseHexStr2Byte(content), KEY.getBytes(), IV.getBytes())));
}
private static byte[] aesCbcEncrypt(byte[] content, byte[] keyBytes, byte[] iv) {
try {
SecretKeySpec key = new SecretKeySpec(keyBytes, "AES");
//设置模式,编码,后端为PKCS5Padding,对应前端是Pkcs7
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, key, new IvParameterSpec(iv));
return cipher.doFinal(content);
} catch (Exception e) {
System.out.println("exception:" + e.toString());
}
return null;
}
private static byte[] aesCbcDecrypt(byte[] content, byte[] keyBytes, byte[] iv) {
try {
SecretKeySpec key = new SecretKeySpec(keyBytes, "AES");
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.DECRYPT_MODE, key, new IvParameterSpec(iv));
return cipher.doFinal(content);
} catch (Exception e) {
System.out.println("exception:" + e.toString());
}
return null;
}
/**
* 将byte数组转换成16进制String
*/
public static String parseByte2HexStr(byte[] buf) {
StringBuilder sb = new StringBuilder();
for (byte b : buf) {
String hex = Integer.toHexString(b & 0xFF);
if (hex.length() == 1) {
hex = '0' + hex;
}
sb.append(hex.toUpperCase());
}
return sb.toString();
}
/**
* 将16进制String转换为byte数组
*/
public static byte[] parseHexStr2Byte(String hexStr) {
if (hexStr.length() < 1) {
return null;
}
byte[] result = new byte[hexStr.length() / 2];
for (int i = 0; i < hexStr.length() / 2; i++) {
int high = Integer.parseInt(hexStr.substring(i * 2, i * 2 + 1), 16);
int low = Integer.parseInt(hexStr.substring(i * 2 + 1, i * 2 + 2), 16);
result[i] = (byte) (high * 16 + low);
}
return result;
}
}
vue
import CryptoJS from 'crypto-js'
// 需要npm crypto-js
export default {
// AES加密
encrypt(data) {
let key = CryptoJS.enc.Utf8.parse('1111111111111111') // key:必须16个字符
let iv = CryptoJS.enc.Utf8.parse('1111111111111111') // 偏移量:必须16个字符
let encrypted = CryptoJS.AES.encrypt(data, key, {
iv: iv,
mode: CryptoJS.mode.CBC,
padding: CryptoJS.pad.Pkcs7
});
// 返回的是base64格式的密文
return encrypted.ciphertext.toString().toUpperCase();
},
// AES解密
decrypt(data) {
let key = CryptoJS.enc.Utf8.parse('abcdefg123456789') // key:必须16个字符
let iv = CryptoJS.enc.Utf8.parse('abcdefg123456789') // 偏移量:必须16个字符
let encryptedHexStr = CryptoJS.enc.Hex.parse(data);
let srcs = CryptoJS.enc.Base64.stringify(encryptedHexStr);
let decrypted = CryptoJS.AES.decrypt(srcs, key, {
iv: iv,
mode: CryptoJS.mode.CBC,
padding: CryptoJS.pad.Pkcs7
});
let decryptedStr = decrypted.toString(CryptoJS.enc.Utf8);
return decryptedStr.toString();
}
}
需要注意一点,我在加解密的过程中,会因为网络问题,build时没有完全,导致解密不成功,很是玄学。