最近做项目走的是http协议,密码明文暴露有些不安全,如是自己加密再传输
首先利用openssh生成rsa钥匙对,然后
JS端核心代码,公匙加密,此处钥匙代头尾
var encrypt = new JSEncrypt();
//encrypt.setPrivateKey('-----BEGIN RSA PRIVATE KEY-----'+PRIVATE_KEY+'-----END RSA PRIVATE KEY-----');
encrypt.setPublicKey(pub_key);
var encrypted = encrypt.encrypt(a);
//console.log(encrypted);
JAVA端核心代码,私匙解密 (privateKey不带RSA钥匙的头尾),此处用的是PKCS8格式
public static String decrypt(String str, String privateKey) throws Exception{
//64位解码加密后的字符串
byte[] inputByte = Base64.decodeBase64(str.getBytes("UTF-8"));
//base64编码的私钥
byte[] decoded = Base64.decodeBase64(privateKey);
RSAPrivateKey priKey = (RSAPrivateKey) KeyFactory.getInstance("RSA").generatePrivate(new PKCS8EncodedKeySpec(decoded));
//RSA解密
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.DECRYPT_MODE, priKey);
String outStr = new String(cipher.doFinal(inputByte));
return outStr;
}