Startseite Erkunden Hilfe
Registrieren Anmelden
sugb
/
dzhh-backend
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: fbc4312a8c
Branches Tags
dzhh-backend
/
.svn
/
pristine
/
0f
/
0f0e5fa19f2f14a309490d548ed6b0814ae3beea.svn-base

0f0e5fa19f2f14a309490d548ed6b0814ae3beea.svn-base 2.9 KB
Verlauf Originalformat

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. package org.jeecg.common.util.security;
    2. 

  2. 

  3. import cn.hutool.core.codec.Base64Decoder;
    4. 

  4. import cn.hutool.core.codec.Base64Encoder;
    5. 

  5. import cn.hutool.crypto.SecureUtil;
    6. 

  6. import cn.hutool.crypto.asymmetric.KeyType;
    7. 

  7. import cn.hutool.crypto.asymmetric.RSA;
    8. 

  8. import cn.hutool.crypto.asymmetric.Sign;
    9. 

  9. import cn.hutool.crypto.asymmetric.SignAlgorithm;
    10. 

  10. import cn.hutool.crypto.symmetric.AES;
    11. 

  11. import org.jeecg.common.util.security.entity.*;
    12. 

  12. import com.alibaba.fastjson.JSONObject;
    13. 

  13. import javax.crypto.SecretKey;
    14. 

  14. import java.security.KeyPair;
    15. 

  15. 

  16. public class SecurityTools {
    17. 

  17.     public static final String ALGORITHM = "AES/ECB/PKCS5Padding";
    18. 

  18. 

  19.     public static SecurityResp valid(SecurityReq req) {
    20. 

  20.         SecurityResp resp=new SecurityResp();
    21. 

  21.         String pubKey=req.getPubKey();
    22. 

  22.         String aesKey=req.getAesKey();
    23. 

  23.         String data=req.getData();
    24. 

  24.         String signData=req.getSignData();
    25. 

  25.         RSA rsa=new RSA(null, Base64Decoder.decode(pubKey));
    26. 

  26.         Sign sign= new Sign(SignAlgorithm.SHA1withRSA,null,pubKey);
    27. 

  27. 

  28. 

  29. 

  30.         byte[] decryptAes = rsa.decrypt(aesKey, KeyType.PublicKey);
    31. 

  31.         //log.info("rsa解密后的秘钥"+ Base64Encoder.encode(decryptAes));
    32. 

  32.         AES aes = SecureUtil.aes(decryptAes);
    33. 

  33. 

  34.         String dencrptValue =aes.decryptStr(data);
    35. 

  35.         //log.info("解密后报文"+dencrptValue);
    36. 

  36.         resp.setData(JSONObject.parseObject(dencrptValue));
    37. 

  37. 

  38.         boolean verify = sign.verify(dencrptValue.getBytes(), Base64Decoder.decode(signData));
    39. 

  39.         resp.setSuccess(verify);
    40. 

  40.         return resp;
    41. 

  41.     }
    42. 

  42. 

  43.     public static SecuritySignResp sign(SecuritySignReq req) {
    44. 

  44.         SecretKey secretKey = SecureUtil.generateKey(ALGORITHM);
    45. 

  45.         byte[] key= secretKey.getEncoded();
    46. 

  46.         String prikey=req.getPrikey();
    47. 

  47.         String data=req.getData();
    48. 

  48. 

  49.         AES aes = SecureUtil.aes(key);
    50. 

  50.         aes.getSecretKey().getEncoded();
    51. 

  51.         String encrptData =aes.encryptBase64(data);
    52. 

  52.         RSA rsa=new RSA(prikey,null);
    53. 

  53.         byte[] encryptAesKey = rsa.encrypt(secretKey.getEncoded(), KeyType.PrivateKey);
    54. 

  54.         //log.info(("rsa加密过的秘钥=="+Base64Encoder.encode(encryptAesKey));
    55. 

  55. 

  56.         Sign sign= new Sign(SignAlgorithm.SHA1withRSA,prikey,null);
    57. 

  57.         byte[] signed = sign.sign(data.getBytes());
    58. 

  58. 

  59.         //log.info(("签名数据===》》"+Base64Encoder.encode(signed));
    60. 

  60. 

  61.         SecuritySignResp resp=new SecuritySignResp();
    62. 

  62.         resp.setAesKey(Base64Encoder.encode(encryptAesKey));
    63. 

  63.         resp.setData(encrptData);
    64. 

  64.         resp.setSignData(Base64Encoder.encode(signed));
    65. 

  65.         return resp;
    66. 

  66.     }
    67. 

  67.     public static MyKeyPair generateKeyPair(){
    68. 

  68.         KeyPair keyPair= SecureUtil.generateKeyPair(SignAlgorithm.SHA1withRSA.getValue(),2048);
    69. 

  69.         String priKey= Base64Encoder.encode(keyPair.getPrivate().getEncoded());
    70. 

  70.         String pubkey= Base64Encoder.encode(keyPair.getPublic().getEncoded());
    71. 

  71.         MyKeyPair resp=new MyKeyPair();
    72. 

  72.         resp.setPriKey(priKey);
    73. 

  73.         resp.setPubKey(pubkey);
    74. 

  74.         return resp;
    75. 

  75.     }
    76. 

  76. }
    77.