AJAX+REA实现前后台数据交互的加密解密
1、创建js文件Encryption.js
/** *加密解密 */ /**RSA加密用生成key*/ functionbodyRSA(){ /**1024位的key参数写130,2014位的key参数写260*/ setMaxDigits(130); /**ajax调用后台方法,取回公钥*/ varkeyR; $.ajax({ url:"/GHGL/Key/pk",//请求后台的url,本例是springMVC框架 type:"post",cache:false,async:false,dataType:"text",success:function(data) { keyR=data; },error:function(XMLHttpRequest,textStatus,errorThrown){ alert("与服务器连接失败!"); } }); /**RSAKeyPair函数三个参数:加密指数、解密指数、系数*/ returnnewRSAKeyPair("10001","",keyR); } /**AES加密用随机生成key和iv*/ functionrandomString(){ varchars='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789'; varlength=chars.length; varpwd=''; for(vari=0;i<16;i++){ pwd+=chars.charAt(Math.floor(Math.random()*length)); } returnpwd; } /** *AES加密 *@paramdata *@paramkey *@paramiv *@returns */ functiongetAesString(data,key,iv){ varkey=CryptoJS.enc.Utf8.parse(key); variv=CryptoJS.enc.Utf8.parse(iv); varencrypted=CryptoJS.AES.encrypt(data,{ iv:iv,mode:CryptoJS.mode.CBC,padding:CryptoJS.pad.Pkcs7 }); returnencrypted.toString(); } /** *AES解密 *@paramencrypted *@paramkey *@paramiv *@returns */ functiongetDAesString(encrypted,iv){ varkey=CryptoJS.enc.Utf8.parse(key); variv=CryptoJS.enc.Utf8.parse(iv); vardecrypted=CryptoJS.AES.decrypt(encrypted,padding:CryptoJS.pad.Pkcs7 }); returndecodeURIComponent(decrypted.toString(CryptoJS.enc.Utf8)).replace("+",""); }
2、ajax请求后台的java类(1)
packagecom.djzh.basicdata.controller; importorg.springframework.stereotype.Controller; importorg.springframework.web.bind.annotation.RequestMapping; importorg.springframework.web.bind.annotation.ResponseBody; importcom.djzh.common.utils.EncryptionDecryption; /** *获取RSA密钥文件中的公钥 *@author:hanlin *@date:2017年2月3日下午3:32:31 *@version:1.0 */ @Controller @RequestMapping("/Key") publicclassPublicKeyController{ /** *获取RSA密钥文件中的公钥 *@returnString类型 */ @RequestMapping("/pk") @ResponseBody publicStringgetPublicKey(){ /**实例化加密解密工具类*/ EncryptionDecryptioned=newEncryptionDecryption(); returned.getPublicKey(); } }
3、ajax请求后台的java类(2)--rea加解密的工具类
EncryptionDecryption.java
packagecom.djzh.common.utils;
importjava.io.ByteArrayOutputStream;
importjava.io.FileInputStream;
importjava.io.FileOutputStream;
importjava.io.ObjectInputStream;
importjava.io.ObjectOutputStream;
importjava.io.UnsupportedEncodingException;
importjava.net.URLDecoder;
importjava.net.URLEncoder;
importjava.security.InvalidAlgorithmParameterException;
importjava.security.InvalidKeyException;
importjava.security.KeyPair;
importjava.security.KeyPairGenerator;
importjava.security.NoSuchAlgorithmException;
importjava.security.PrivateKey;
importjava.security.SecureRandom;
importjavax.crypto.BadPaddingException;
importjavax.crypto.Cipher;
importjavax.crypto.IllegalBlockSizeException;
importjavax.crypto.NoSuchPaddingException;
importjavax.crypto.spec.IvParameterSpec;
importjavax.crypto.spec.SecretKeySpec;
importorg.apache.commons.codec.binary.Base64;
importorg.apache.log4j.Logger;
/**
*rsaaes加密解密工具类
*Title:EncryptionDecryption
*Company:djzh
*@authorhanlin
*@date2017年1月17日上午11:02:50
*/
publicclassEncryptionDecryption{
/**密钥文件存储位置*/
privatestaticStringRSAKeyStore="C:/RSAKey.txt";//在这个位置放这个文件
/**
*日志记录器
*/
publicstaticLoggerlogger=Logger.getLogger(EncryptionDecryption.class);
/**
*AES加密
*@paramcontent明文
*@paramkeyBytes秘钥
*@paramiv偏移量
*@return
*/
publicstaticStringAES_CBC_Encrypt(Stringcontent,byte[]keyBytes,byte[]iv){
try{
SecretKeySpeckey=newSecretKeySpec(keyBytes,"AES");
Ciphercipher=Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE,newIvParameterSpec(iv));
content=URLEncoder.encode(content,"UTF-8");//用url编码
byte[]result=cipher.doFinal(content.getBytes());//加密
returnnewString(Base64.encodeBase64(result),"UTF-8");
}catch(NoSuchPaddingExceptione){
e.printStackTrace();
}catch(NoSuchAlgorithmExceptione){
e.printStackTrace();
}catch(UnsupportedEncodingExceptione){
e.printStackTrace();
}catch(InvalidKeyExceptione){
e.printStackTrace();
}catch(IllegalBlockSizeExceptione){
e.printStackTrace();
}catch(BadPaddingExceptione){
e.printStackTrace();
}catch(InvalidAlgorithmParameterExceptione){
e.printStackTrace();
}
returnnull;
}
/**
*AES解密
*@paramcontent密文
*@paramkeyBytes秘钥
*@paramiv偏移量
*@return
*/
publicstaticStringAES_CBC_Decrypt(Stringcontent,byte[]iv){
try{
content=content.replaceAll("","+");
byte[]decryptBaseData=Base64.decodeBase64(content.getBytes("utf-8"));
SecretKeySpeckey=newSecretKeySpec(keyBytes,"AES");
Ciphercipher=Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.DECRYPT_MODE,newIvParameterSpec(iv));
byte[]result=cipher.doFinal(decryptBaseData);
returnURLDecoder.decode(newString(result),"utf-8");
}catch(NoSuchPaddingExceptione){
e.printStackTrace();
}catch(NoSuchAlgorithmExceptione){
e.printStackTrace();
}catch(UnsupportedEncodingExceptione){
e.printStackTrace();
}catch(InvalidKeyExceptione){
e.printStackTrace();
}catch(IllegalBlockSizeExceptione){
e.printStackTrace();
}catch(BadPaddingExceptione){
e.printStackTrace();
}catch(InvalidAlgorithmParameterExceptione){
e.printStackTrace();
}
returnnull;
}
/**
*字符串转为byte[]
*@paramhexString
*@return
*/
publicstaticbyte[]hexStringToBytes(StringhexString){
if(hexString==null||hexString.equals("")){
returnnull;
}
hexString=hexString.toUpperCase();
intlength=hexString.length()/2;
char[]hexChars=hexString.tocharArray();
byte[]d=newbyte[length];
for(inti=0;i<length;i++){
intpos=i*2;
d[i]=(byte)(charToByte(hexChars[pos])<<4|charToByte(hexChars[pos+1]));
}
returnd;
}
/**
*Convertchartobyte
*@paramcchar
*@returnbyte
*/
privatestaticbytecharToByte(charc){
return(byte)"0123456789ABCDEF".indexOf(c);
}
/**
*解密由RSA加密的AES的key和iv
*@parampara
*@return
*@throwsException
*/
publicstaticbyte[]getValue(Stringparam)throwsException{
byte[]trueValue=null;
try{
if(!param.equals("")&¶m!=null){
byte[]KeyB=hexStringToBytes(param);
KeyB=decrypt(getKeyPair().getPrivate(),KeyB);
StringBuffersbKey=newStringBuffer();
sbKey.append(newString(KeyB));
param=sbKey.reverse().toString();
trueValue=URLDecoder.decode(param,"UTF-8").getBytes();
}
}catch(Exceptione){
//重要参数值
logger.error("传入参数:"+"param:"+param);
//异常说明
logger.error("解密由RSA加密的AES的key和iv失败,可能前台传入的aKey或者aIv为空");
e.printStackTrace();
}
returntrueValue;
}
/**
*获取密钥文件中的公钥
*@return
*/
publicStringgetPublicKey(){
ObjectpublicKey=null;
StringpublicKEY=null;
try{
publicKey=getKeyPair().getPublic();
publicKEY=(String)publicKey.toString().subSequence(37,293);
}catch(Exceptione){
e.printStackTrace();
}
returnpublicKEY;
}
/**
*RSA生成密钥对
*@return
*@throwsException
*/
publicstaticKeyPairgenerateKeyPair()throwsException{
try{
KeyPairGeneratorkeyPairGen=KeyPairGenerator.getInstance("RSA",neworg.bouncycastle.jce.provider.BouncyCastleProvider());
finalintKEY_SIZE=1024;
keyPairGen.initialize(KEY_SIZE,newSecureRandom());
KeyPairkeyPair=keyPairGen.generateKeyPair();
FileOutputStreamfos=newFileOutputStream(RSAKeyStore);
ObjectOutputStreamoos=newObjectOutputStream(fos);
oos.writeObject(keyPair);
oos.close();
fos.close();
returnkeyPair;
}catch(Exceptione){
thrownewException(e.getMessage());
}
}
/**
*获取密钥对
*@return
*@throwsException
*/
publicstaticKeyPairgetKeyPair()throwsException{
FileInputStreamfis=newFileInputStream(RSAKeyStore);
ObjectInputStreamoos=newObjectInputStream(fis);
KeyPairkp=(KeyPair)oos.readObject();
oos.close();
fis.close();
returnkp;
}
/**
*解密
*@parampk
*@paramraw
*@return
*@throwsException
*/
@SuppressWarnings("static-access")
privatestaticbyte[]decrypt(PrivateKeypk,byte[]raw)throwsException{
try{
Ciphercipher=Cipher.getInstance("RSA",neworg.bouncycastle.jce.provider.BouncyCastleProvider());
cipher.init(cipher.DECRYPT_MODE,pk);
intblockSize=cipher.getBlockSize();
ByteArrayOutputStreambout=newByteArrayOutputStream(64);
intj=0;
while(raw.length-j*blockSize>0){
bout.write(cipher.doFinal(raw,j*blockSize,blockSize));
j++;
}
returnbout.toByteArray();
}catch(Exceptione){
thrownewException(e.getMessage());
}
}
}
C:/RSAKey.txt
5、在JSP页面导入Encryption.js,通过ajax进行加密请求
functiondataAjaxRefer(){
//筛选条件的参数进行加密
varkeyRSA=bodyRSA();//生成RSA加密用的key
varkey=randomString();//随机生成AES的key和iv
variv=randomString();
varaKey=encryptedString(keyRSA,encodeURIComponent(key));//RSA加密AES的key
varaIv=encryptedString(keyRSA,encodeURIComponent(iv));//RSA加密AES的iv
varselect1=$("#jffpqh").val();//参数1
varselectText1_=getAesString(encodeURIComponent(select1),iv);//AES参数内容1
//筛选条件的参数
vardata={
jffpqh:selectText1_,//参数1
aKey:aKey,aIv:aIv
}
//console.log(data)
$.ajax({
type:"post",url:"/GHGL/Distribution/showFundsTerm",//请求的url,本例为springMVC框架
async:true,data:data,dataType:"json",success:function(data){
vardecryptedStr=getDAesString(data,iv);//解密
}
},errorThrown){
alert(XMLHttpRequest.status);
alert(XMLHttpRequest.readyState);
alert(textStatus);
},complete:function(XMLHttpRequest,textStatus){
this;//调用本次AJAX请求时传递的options参数
}
});
}
6、总结: 首先创建js文件,里面包含生成加密解密的 key 和iv、加密方法、机密方法,然后在后台写好相应的生成key,IV的工具类,工具类会读取 rsa.txt文件,然后通过js调用ajax进行加密查询,这是项目中用到的,所以给大家分享一下,希望能给大家提供帮助。
原文链接:https://www.f2er.com/ajax/161377.html