Java对网页用户登录注册操作的RSA加密方法

版权声明:本文为博主原创文章,遵循 CC 4.0 by-sa 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/zzxzzxhao/article/details/78059199

先建立一个工具类,RSA算法的实现

package com.zzx.sys.control;

import java.math.BigInteger;    
import java.security.KeyFactory;    
import java.security.KeyPair;    
import java.security.KeyPairGenerator;    
import java.security.NoSuchAlgorithmException;    
import java.security.interfaces.RSAPrivateKey;    
import java.security.interfaces.RSAPublicKey;    
import java.security.spec.RSAPrivateKeySpec;    
import java.security.spec.RSAPublicKeySpec;    
import java.util.HashMap;   

import javax.crypto.Cipher;   

import org.apache.commons.lang.StringUtils;
  
public class RSAUtils {  
	/**  
     * 生成公钥和私钥  
     * @throws NoSuchAlgorithmException   
     *  
     */    
    public static HashMap<String, Object> getKeys() throws NoSuchAlgorithmException{    
        HashMap<String, Object> map = new HashMap<String, Object>();    
        KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance("RSA", new org.bouncycastle.jce.provider.BouncyCastleProvider());    
        keyPairGen.initialize(1024);    
        KeyPair keyPair = keyPairGen.generateKeyPair();    
        RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic();    
        RSAPrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate();    
        map.put("public", publicKey);    
        map.put("private", privateKey);    
        return map;    
    }    
    /**  
     * 使用模和指数生成RSA公钥  
     *   
     *   
     * @param modulus  
     *            模  
     * @param exponent  
     *            指数  
     * @return  
     */    
    public static RSAPublicKey getPublicKey(String modulus, String exponent) {    
        try {    
            BigInteger b1 = new BigInteger(modulus);    
            BigInteger b2 = new BigInteger(exponent);    
            KeyFactory keyFactory = KeyFactory.getInstance("RSA", new org.bouncycastle.jce.provider.BouncyCastleProvider());    
            RSAPublicKeySpec keySpec = new RSAPublicKeySpec(b1, b2);    
            return (RSAPublicKey) keyFactory.generatePublic(keySpec);    
        } catch (Exception e) {    
            e.printStackTrace();    
            return null;    
        }    
    }    
    
    /**  
     * 使用模和指数生成RSA私钥  
      
     * /None/NoPadding】  
     *   
     * @param modulus  
     *            模  
     * @param exponent  
     *            指数  
     * @return  
     */    
    public static RSAPrivateKey getPrivateKey(String modulus, String exponent) {    
        try {    
            BigInteger b1 = new BigInteger(modulus);    
            BigInteger b2 = new BigInteger(exponent);    
            KeyFactory keyFactory = KeyFactory.getInstance("RSA", new org.bouncycastle.jce.provider.BouncyCastleProvider());    
            RSAPrivateKeySpec keySpec = new RSAPrivateKeySpec(b1, b2);    
            return (RSAPrivateKey) keyFactory.generatePrivate(keySpec);    
        } catch (Exception e) {    
            e.printStackTrace();    
            return null;    
        }    
    }    
    
    /**  
     * 公钥加密  
     *   
     * @param data  
     * @param publicKey  
     * @return  
     * @throws Exception  
     */    
    public static String encryptByPublicKey(String data, RSAPublicKey publicKey)    
            throws Exception {    
        Cipher cipher = Cipher.getInstance("RSA", new org.bouncycastle.jce.provider.BouncyCastleProvider());    
        cipher.init(Cipher.ENCRYPT_MODE, publicKey);    
        // 模长    
        int key_len = publicKey.getModulus().bitLength() / 8;    
        // 加密数据长度 <= 模长-11    
        String[] datas = splitString(data, key_len - 11);    
        String mi = "";    
        //如果明文长度大于模长-11则要分组加密    
        for (String s : datas) {    
            mi += bcd2Str(cipher.doFinal(s.getBytes()));    
        }    
        return mi;    
    }    
    
    /**  
     * 私钥解密  
     *   
     * @param data  
     * @param privateKey  
     * @return  
     * @throws Exception  
     */    
    public static String decryptByPrivateKey(String data, RSAPrivateKey privateKey)    
            throws Exception {    
        Cipher cipher = Cipher.getInstance("RSA", new org.bouncycastle.jce.provider.BouncyCastleProvider());    
        cipher.init(Cipher.DECRYPT_MODE, privateKey);    
        //模长    
        int key_len = privateKey.getModulus().bitLength() / 8;    
        byte[] bytes = data.getBytes();    
        byte[] bcd = ASCII_To_BCD(bytes, bytes.length);    
        //System.err.println(bcd.length);    
        //如果密文长度大于模长则要分组解密    
        String ming = "";    
        byte[][] arrays = splitArray(bcd, key_len);    
        for(byte[] arr : arrays){    
            ming += new String(cipher.doFinal(arr));    
        }    
        return ming;    
    }    
    /**  
     * ASCII码转BCD码  
     *   
     */    
    public static byte[] ASCII_To_BCD(byte[] ascii, int asc_len) {    
        byte[] bcd = new byte[asc_len / 2];    
        int j = 0;    
        for (int i = 0; i < (asc_len + 1) / 2; i++) {    
            bcd[i] = asc_to_bcd(ascii[j++]);    
            bcd[i] = (byte) (((j >= asc_len) ? 0x00 : asc_to_bcd(ascii[j++])) + (bcd[i] << 4));    
        }    
        return bcd;    
    }    
    public static byte asc_to_bcd(byte asc) {    
        byte bcd;    
    
        if ((asc >= '0') && (asc <= '9'))    
            bcd = (byte) (asc - '0');    
        else if ((asc >= 'A') && (asc <= 'F'))    
            bcd = (byte) (asc - 'A' + 10);    
        else if ((asc >= 'a') && (asc <= 'f'))    
            bcd = (byte) (asc - 'a' + 10);    
        else    
            bcd = (byte) (asc - 48);    
        return bcd;    
    }    
    /**  
     * BCD转字符串  
     */    
    public static String bcd2Str(byte[] bytes) {    
        char temp[] = new char[bytes.length * 2], val;    
    
        for (int i = 0; i < bytes.length; i++) {    
            val = (char) (((bytes[i] & 0xf0) >> 4) & 0x0f);    
            temp[i * 2] = (char) (val > 9 ? val + 'A' - 10 : val + '0');    
    
            val = (char) (bytes[i] & 0x0f);    
            temp[i * 2 + 1] = (char) (val > 9 ? val + 'A' - 10 : val + '0');    
        }    
        return new String(temp);    
    }    
    /**  
     * 拆分字符串  
     */    
    public static String[] splitString(String string, int len) {    
        int x = string.length() / len;    
        int y = string.length() % len;    
        int z = 0;    
        if (y != 0) {    
            z = 1;    
        }    
        String[] strings = new String[x + z];    
        String str = "";    
        for (int i=0; i<x+z; i++) {    
            if (i==x+z-1 && y!=0) {    
                str = string.substring(i*len, i*len+y);    
            }else{    
                str = string.substring(i*len, i*len+len);    
            }    
            strings[i] = str;    
        }    
        return strings;    
    }    
    /**  
     *拆分数组   
     */    
    public static byte[][] splitArray(byte[] data,int len){    
        int x = data.length / len;    
        int y = data.length % len;    
        int z = 0;    
        if(y!=0){    
            z = 1;    
        }    
        byte[][] arrays = new byte[x+z][];    
        byte[] arr;    
        for(int i=0; i<x+z; i++){    
            arr = new byte[len];    
            if(i==x+z-1 && y!=0){    
                System.arraycopy(data, i*len, arr, 0, y);    
            }else{    
                System.arraycopy(data, i*len, arr, 0, len);    
            }    
            arrays[i] = arr;    
        }    
        return arrays;    
    }  
    public static void main(String[] args) throws Exception{  
    	int i = 1;
    	i = i<<1;
    	int temp = 8;
    	System.out.println(i);
    	temp &=i;
    	System.out.println(temp);
        HashMap<String, Object> map = getKeys();    
        //生成公钥和私钥    
        RSAPublicKey publicKey = (RSAPublicKey) map.get("public");    
        RSAPrivateKey privateKey = (RSAPrivateKey) map.get("private");    
            
        //模    
        String modulus = publicKey.getModulus().toString();    
        System.out.println("pubkey modulus="+modulus);  
        //公钥指数    
        String public_exponent = publicKey.getPublicExponent().toString();  
        System.out.println("pubkey exponent="+public_exponent);  
        //模 (16进制)   
        String modulus_16 = publicKey.getModulus().toString(16);    
        System.out.println("pubkey modulus_16="+modulus_16);  
        //公钥指数    (16进制) 
        String public_exponent_16 = publicKey.getPublicExponent().toString(16);  
        System.out.println("pubkey exponent_16="+public_exponent_16); 
        //私钥指数    
        String private_exponent = privateKey.getPrivateExponent().toString();    
        System.out.println("private exponent="+private_exponent);  
        //私钥指数    (16进制) 
        String private_exponent_16 = privateKey.getPrivateExponent().toString(16);    
        System.out.println("private exponent_16="+private_exponent_16); 
        //明文    
        String ming = "654321";    
        System.out.println(StringUtils.reverse(ming));
        //使用模和指数生成公钥和私钥    
        RSAPublicKey pubKey = RSAUtils.getPublicKey(modulus, public_exponent);    
        RSAPrivateKey priKey = RSAUtils.getPrivateKey(modulus, private_exponent);    
        //加密后的密文    
        String mi = RSAUtils.encryptByPublicKey(ming, pubKey);    
        System.err.println("mi="+mi); 
        //解密后的明文    
        String ming2 = RSAUtils.decryptByPrivateKey(mi, priKey);    
        System.err.println("ming2="+ming2);    
    }  
}  
然后在js之中先把RSA生成的模和公钥指数生成,以备后用

var appIndex = {
		base : location.href,
		urlGetKey : top.window.WXYH.base + "/Live/getKey.do",//加密
};
var publicKeyExponent;
var publicKeyModulus;

$(document).ready(function(){
	$.getJSON(appIndex.urlGetKey, function(data){
		publicKeyExponent = data.exponent;
		publicKeyModulus = data.modulus;
	});
})
所以在注册的时候,先对密码进行加密

//注册验证
	$("#registerButton").on("click", function(e) {
		var p=$("#registerPassword").val();
		RSAUtils.setMaxDigits(200); 
		var key = new RSAUtils.getKeyPair(publicKeyExponent, "", publicKeyModulus);
		$("#registerPassword").val( RSAUtils.encryptedString(key,p.split("").reverse().join("")));
		
		var form = $("form[name=loadform]"); 
		$.ajax({
			url:appIndex.urlRegister,
			type:"post",
			data:form.serialize(),
			dataType:"json",
			success:function(res){
				var retcode = res.retcode;
				if(retcode==1){
					myalert(res.retmsg);
					$("#registerAccount").val("");
					$("#registerName").val("");
					$("#registerPassword").val("");
				}else{
					myalert(res.retmsg);
					$("#registerAccount").val("");
					$("#registerName").val("");
					$("#registerPassword").val("");
				}
			}
		});
	});

后台处理

/**
	 * 注册
	 * @param request
	 * @param response
	 */
	@RequestMapping("/Live/register")
	public void register(HttpServletRequest request,HttpServletResponse response) throws MyException {
		Result result=new Result();
		SysLiveUser user=new SysLiveUser();
		String account=request.getParameter("registerAccount");
		String name=request.getParameter("registerName");
		String password=request.getParameter("registerPassword");
		try {
			HashMap<String, Object> map = (HashMap<String, Object>)request.getSession().getAttribute("securityKey");
			//获取私钥    
			RSAPrivateKey privateKey = (RSAPrivateKey) map.get("private");    
			
			try {
				password = RSAUtils.decryptByPrivateKey(password, privateKey);
			} catch (Exception e) {
				throw new MyException("密码通过秘钥解密错误");
			} 
			
			PasswordEncoder passwordEncoder = new PasswordEncoder();
			password = passwordEncoder.encodePassword(password, account);
			
			user.setAccount(account);
			user.setPassword(password);
			user.setName(name);
			
			liveservice.register(user);
			result.setCode(1);
			result.setMessage("注册成功!");
			JsonUtil.outputJson(response, result);
		} catch (Exception e) {
			result.setCode(-1);
			result.setMessage(e.getMessage());
			JsonUtil.outputJson(response, result);
		}
	}

先进行私钥解密,再对password再进行了一次Md5的加密,如果没必要也可以忽略吧,加强安全性,实现类如下:

package com.zzx.sys.control.util;

import org.springframework.security.authentication.encoding.Md5PasswordEncoder;

public class PasswordEncoder {

	public String encodePassword(String sourcePwd, String userSid)
	  {
	    Md5PasswordEncoder passwordEncoder = new Md5PasswordEncoder();
	    return passwordEncoder.encodePassword(sourcePwd, userSid);
	  }
	
	public static void main(String[] args) {
		PasswordEncoder passwordEncoder = new PasswordEncoder();
		System.out.println(passwordEncoder.encodePassword("admin", "admin"));
	}
}
至此密码加密已经完成,后面就是数据的保存了,程序设计上仍有不足,代码实现也多属于参考,还需要慢慢进步。。。


登录操作其实也简单,先对密码进行加密,后再与数据库密码匹配,这部分不做赘述




展开阅读全文

没有更多推荐了,返回首页