前提:
三個引數,
1.sessionKey(拿openId的時候可以得到)
2.encryptedData(前端提供)
3.iv(前端提供)
一個類,一個方法,
1.類:
import java.nio.charset.Charset;
import java.util.Arrays;
/**
* 微信小程式加解密
* @author liuyazhuang
*
*/
public class WxPKCS7Encoder {
private static final Charset CHARSET = Charset.forName("utf-8");
private static final int BLOCK_SIZE = 32;
/**
* 獲得對明文進行補位填充的位元組.
*
* @param count
* 需要進行填充補位操作的明文位元組個數
* @return 補齊用的位元組陣列
*/
public static byte[] encode(int count) {
// 計算需要填充的位數
int amountToPad = BLOCK_SIZE - (count % BLOCK_SIZE);
if (amountToPad == 0) {
amountToPad = BLOCK_SIZE;
}
// 獲得補位所用的字符
char padChr = chr(amountToPad);
String tmp = new String();
for (int index = 0; index < amountToPad; index++) {
tmp += padChr;
}
return tmp.getBytes(CHARSET);
}
/**
* 洗掉解密后明文的補位字符
*
* @param decrypted
* 解密后的明文
* @return 洗掉補位字符后的明文
*/
public static byte[] decode(byte[] decrypted) {
int pad = decrypted[decrypted.length - 1];
if (pad < 1 || pad > 32) {
pad = 0;
}
return Arrays.copyOfRange(decrypted, 0, decrypted.length - pad);
}
/**
* 將數字轉化成ASCII碼對應的字符,用于對明文進行補碼
*
* @param a
* 需要轉化的數字
* @return 轉化得到的字符
*/
public static char chr(int a) {
byte target = (byte) (a & 0xFF);
return (char) target;
}
}
2.方法:
import java.io.UnsupportedEncodingException;
import java.security.AlgorithmParameters;
import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.Security;
import java.security.spec.InvalidParameterSpecException;
import java.util.HashMap;
import javax.annotation.Resource;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.lang3.StringUtils;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import lombok.extern.slf4j.Slf4j;
@Slf4j
public class AesCbcUtil {
static {
//BouncyCastle是一個開源的加解密解決方案,主頁在http://www.bouncycastle.org/
Security.addProvider(new BouncyCastleProvider());
}
/**
* AES解密
*
* @param data //密文,被加密的資料
* @param key //秘鑰
* @param iv //偏移量
* @param encodingFormat //解密后的結果需要進行的編碼
* @param type //0 是其他 1是微信步數
* @return
* @throws Exception
*/
public static String decrypt(String data, String key, String iv, String encodingFormat,Integer type) throws Exception {
// initialize();
if(StringUtils.isEmpty(data)||StringUtils.isEmpty(key)||StringUtils.isEmpty(iv))
throw new SkyParamNullException("小程式獲取用戶資訊引數不能為空");
//被加密的資料
byte[] dataByte = Base64.decodeBase64(data);
//加密秘鑰
byte[] keyByte = Base64.decodeBase64(key);
//偏移量
byte[] ivByte = Base64.decodeBase64(iv);
try {
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
SecretKeySpec spec = new SecretKeySpec(keyByte, "AES");
AlgorithmParameters parameters = AlgorithmParameters.getInstance("AES");
parameters.init(new IvParameterSpec(ivByte));
cipher.init(Cipher.DECRYPT_MODE, spec, parameters);// 初始化
byte[] resultByte = cipher.doFinal(dataByte);
if (null != resultByte && resultByte.length > 0) {
if (type==1){
return new String(WxPKCS7Encoder.decode(resultByte));
}else {
return new String(resultByte, encodingFormat);
}
}
return null;
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
log.error("小程式決議出錯1{}",e.getMessage());
} catch (NoSuchPaddingException e) {
e.printStackTrace();
log.error("小程式決議出錯2{}",e.getMessage());
} catch (InvalidParameterSpecException e) {
e.printStackTrace();
log.error("小程式決議出錯3{}",e.getMessage());
} catch (InvalidKeyException e) {
e.printStackTrace();
log.error("小程式決議出錯4{}",e.getMessage());
} catch (InvalidAlgorithmParameterException e) {
e.printStackTrace();
log.error("小程式決議出錯5{}",e.getMessage());
} catch (IllegalBlockSizeException e) {
e.printStackTrace();
log.error("小程式決議出錯6{}",e.getMessage());
} catch (BadPaddingException e) {
e.printStackTrace();
log.error("小程式決議出錯7{}",e.getMessage());
}
catch (UnsupportedEncodingException e) {
e.printStackTrace();
log.error("小程式決議出錯8{}",e.getMessage());
}
return null;
}
}
實作
@ApiOperation(value = "wx步數解密")
@PostMapping(value = "/decode")
public ResultModel<Object> questionList(@RequestBody WxSportParam param) throws Exception {
HashMap<String, Object> map = wxXiaoChenXuUtil.getWxOpenId(//這個方法網上很多,沒有就用binarywang的
param.getCode()//前端提供的code
,sysProperties.getWxAppId()//appID
,sysProperties.getWxAppSecret());//secret
String sessionKey = map.get("session_key").toString();
String result = AesCbcUtil.decrypt(param.getData(), sessionKey,param.getIv(), "UTF-8",1);
return ResultModel.success(result);
}
出來的資料 :
{ “stepInfoList”: [
{
“timestamp”: 1445866601,
“step”: 100
},
{
“timestamp”: 1445876601,
“step”: 120
} ] }、
tips:如果是決議用戶資訊的話一樣的用法,解密decrypt中引數type傳0,兩者區別在于位元組的decode方法不一樣而已,
求點贊關注,不理解的可以評論或者私信詢問
轉載請註明出處,本文鏈接:https://www.uj5u.com/qita/131733.html
標籤:AI