AJAX+REA实现前后台数据交互的加密解密

2025-02-25 技术教程

1、创建js文件Encryption.js

/***加密解密*//**RSA加密用生成key*/functionbodyRSA(){/**1024位的key参数写130,2014位的key参数写260*/setMaxDigits(130);/**ajax调用后台方法,取回公钥*/varkeyR;$.ajax({url:"/GHGL/Key/pk",//请求后台的url，本例是springMVC框架type:"post",cache:false,async:false,dataType:"text",success:function(data){keyR=data;},error:function(XMLHttpRequest,textStatus,errorThrown){alert("与服务器连接失败！");}});/**RSAKeyPair函数三个参数：加密指数、解密指数、系数*/returnnewRSAKeyPair("10001","",keyR);}/**AES加密用随机生成key和iv*/functionrandomString(){varchars='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';varlength=chars.length;varpwd='';for(vari=0;i<16;i++){pwd+=chars.charAt(Math.floor(Math.random()*length));}returnpwd;}/***AES加密*@paramdata*@paramkey*@paramiv*@returns*/functiongetAesString(data,key,iv){varkey=CryptoJS.enc.Utf8.parse(key);variv=CryptoJS.enc.Utf8.parse(iv);varencrypted=CryptoJS.AES.encrypt(data,key,{iv:iv,mode:CryptoJS.mode.CBC,padding:CryptoJS.pad.Pkcs7});returnencrypted.toString();}/***AES解密*@paramencrypted*@paramkey*@paramiv*@returns*/functiongetDAesString(encrypted,key,iv){varkey=CryptoJS.enc.Utf8.parse(key);variv=CryptoJS.enc.Utf8.parse(iv);vardecrypted=CryptoJS.AES.decrypt(encrypted,key,{iv:iv,mode:CryptoJS.mode.CBC,padding:CryptoJS.pad.Pkcs7});returndecodeURIComponent(decrypted.toString(CryptoJS.enc.Utf8)).replace("+","");}

2、ajax请求后台的java类（1）

packagecom.djzh.basicdata.controller;importorg.springframework.stereotype.Controller;importorg.springframework.web.bind.annotation.RequestMapping;importorg.springframework.web.bind.annotation.ResponseBody;importcom.djzh.common.utils.EncryptionDecryption;/***获取RSA密钥文件中的公钥*@author:hanlin*@date:2017年2月3日下午3:32:31*@version:1.0*/@Controller@RequestMapping("/Key")publicclassPublicKeyController{/***获取RSA密钥文件中的公钥*@returnString类型*/@RequestMapping("/pk")@ResponseBodypublicStringgetPublicKey(){/**实例化加密解密工具类*/EncryptionDecryptioned=newEncryptionDecryption();returned.getPublicKey();}}

3、ajax请求后台的java类（2）--rea加解密的工具类

EncryptionDecryption.java

packagecom.djzh.common.utils;importjava.io.ByteArrayOutputStream;importjava.io.FileInputStream;importjava.io.FileOutputStream;importjava.io.ObjectInputStream;importjava.io.ObjectOutputStream;importjava.io.UnsupportedEncodingException;importjava.net.URLDecoder;importjava.net.URLEncoder;importjava.security.InvalidAlgorithmParameterException;importjava.security.InvalidKeyException;importjava.security.KeyPair;importjava.security.KeyPairGenerator;importjava.security.NoSuchAlgorithmException;importjava.security.PrivateKey;importjava.security.SecureRandom;importjavax.crypto.BadPaddingException;importjavax.crypto.Cipher;importjavax.crypto.IllegalBlockSizeException;importjavax.crypto.NoSuchPaddingException;importjavax.crypto.spec.IvParameterSpec;importjavax.crypto.spec.SecretKeySpec;importorg.apache.commons.codec.binary.Base64;importorg.apache.log4j.Logger;/***rsaaes加密解密工具类*Title:EncryptionDecryption*Company:djzh*@authorhanlin*@date2017年1月17日上午11:02:50*/publicclassEncryptionDecryption{/**密钥文件存储位置*/privatestaticStringRSAKeyStore="C:/RSAKey.txt";//在这个位置放这个文件/***日志记录器*/publicstaticLoggerlogger=Logger.getLogger(EncryptionDecryption.class);/***AES加密*@paramcontent明文*@paramkeyBytes秘钥*@paramiv偏移量*@return*/publicstaticStringAES_CBC_Encrypt(Stringcontent,byte[]keyBytes,byte[]iv){try{SecretKeySpeckey=newSecretKeySpec(keyBytes,"AES");Ciphercipher=Cipher.getInstance("AES/CBC/PKCS5Padding");cipher.init(Cipher.ENCRYPT_MODE,key,newIvParameterSpec(iv));content=URLEncoder.encode(content,"UTF-8");//用url编码byte[]result=cipher.doFinal(content.getBytes());//加密returnnewString(Base64.encodeBase64(result),"UTF-8");}catch(NoSuchPaddingExceptione){e.printStackTrace();}catch(NoSuchAlgorithmExceptione){e.printStackTrace();}catch(UnsupportedEncodingExceptione){e.printStackTrace();}catch(InvalidKeyExceptione){e.printStackTrace();}catch(IllegalBlockSizeExceptione){e.printStackTrace();}catch(BadPaddingExceptione){e.printStackTrace();}catch(InvalidAlgorithmParameterExceptione){e.printStackTrace();}returnnull;}/***AES解密*@paramcontent密文*@paramkeyBytes秘钥*@paramiv偏移量*@return*/publicstaticStringAES_CBC_Decrypt(Stringcontent,byte[]keyBytes,byte[]iv){try{content=content.replaceAll("","+");byte[]decryptBaseData=Base64.decodeBase64(content.getBytes("utf-8"));SecretKeySpeckey=newSecretKeySpec(keyBytes,"AES");Ciphercipher=Cipher.getInstance("AES/CBC/PKCS5Padding");cipher.init(Cipher.DECRYPT_MODE,key,newIvParameterSpec(iv));byte[]result=cipher.doFinal(decryptBaseData);returnURLDecoder.decode(newString(result),"utf-8");}catch(NoSuchPaddingExceptione){e.printStackTrace();}catch(NoSuchAlgorithmExceptione){e.printStackTrace();}catch(UnsupportedEncodingExceptione){e.printStackTrace();}catch(InvalidKeyExceptione){e.printStackTrace();}catch(IllegalBlockSizeExceptione){e.printStackTrace();}catch(BadPaddingExceptione){e.printStackTrace();}catch(InvalidAlgorithmParameterExceptione){e.printStackTrace();}returnnull;}/***字符串转为byte[]*@paramhexString*@return*/publicstaticbyte[]hexStringToBytes(StringhexString){if(hexString==null||hexString.equals("")){returnnull;}hexString=hexString.toUpperCase();intlength=hexString.length()/2;char[]hexChars=hexString.toCharArray();byte[]d=newbyte[length];for(inti=0;i<length;i++){intpos=i*2;d[i]=(byte)(charToByte(hexChars[pos])<<4|charToByte(hexChars[pos+1]));}returnd;}/***Convertchartobyte*@paramcchar*@returnbyte*/privatestaticbytecharToByte(charc){return(byte)"0123456789ABCDEF".indexOf(c);}/***解密由RSA加密的AES的key和iv*@parampara*@return*@throwsException*/publicstaticbyte[]getValue(Stringparam)throwsException{byte[]trueValue=null;try{if(!param.equals("")&&param!=null){byte[]KeyB=hexStringToBytes(param);KeyB=decrypt(getKeyPair().getPrivate(),KeyB);StringBuffersbKey=newStringBuffer();sbKey.append(newString(KeyB));param=sbKey.reverse().toString();trueValue=URLDecoder.decode(param,"UTF-8").getBytes();}}catch(Exceptione){//重要参数值logger.error("传入参数："+"param:"+param);//异常说明logger.error("解密由RSA加密的AES的key和iv失败，可能前台传入的aKey或者aIv为空");e.printStackTrace();}returntrueValue;}/***获取密钥文件中的公钥*@return*/publicStringgetPublicKey(){ObjectpublicKey=null;StringpublicKEY=null;try{publicKey=getKeyPair().getPublic();publicKEY=(String)publicKey.toString().subSequence(37,293);}catch(Exceptione){e.printStackTrace();}returnpublicKEY;}/***RSA生成密钥对*@return*@throwsException*/publicstaticKeyPairgenerateKeyPair()throwsException{try{KeyPairGeneratorkeyPairGen=KeyPairGenerator.getInstance("RSA",neworg.bouncycastle.jce.provider.BouncyCastleProvider());finalintKEY_SIZE=1024;keyPairGen.initialize(KEY_SIZE,newSecureRandom());KeyPairkeyPair=keyPairGen.generateKeyPair();FileOutputStreamfos=newFileOutputStream(RSAKeyStore);ObjectOutputStreamoos=newObjectOutputStream(fos);oos.writeObject(keyPair);oos.close();fos.close();returnkeyPair;}catch(Exceptione){thrownewException(e.getMessage());}}/***获取密钥对*@return*@throwsException*/publicstaticKeyPairgetKeyPair()throwsException{FileInputStreamfis=newFileInputStream(RSAKeyStore);ObjectInputStreamoos=newObjectInputStream(fis);KeyPairkp=(KeyPair)oos.readObject();oos.close();fis.close();returnkp;}/***解密*@parampk*@paramraw*@return*@throwsException*/@SuppressWarnings("static-access")privatestaticbyte[]decrypt(PrivateKeypk,byte[]raw)throwsException{try{Ciphercipher=Cipher.getInstance("RSA",neworg.bouncycastle.jce.provider.BouncyCastleProvider());cipher.init(cipher.DECRYPT_MODE,pk);intblockSize=cipher.getBlockSize();ByteArrayOutputStreambout=newByteArrayOutputStream(64);intj=0;while(raw.length-j*blockSize>0){bout.write(cipher.doFinal(raw,j*blockSize,blockSize));j++;}returnbout.toByteArray();}catch(Exceptione){thrownewException(e.getMessage());}}}

4、在某个盘的位置放这个文件，上面代码里调用了。见附件

C:/RSAKey.txt

5、在JSP页面导入Encryption.js，通过ajax进行加密请求

functiondataAjaxRefer(){//筛选条件的参数进行加密varkeyRSA=bodyRSA();//生成RSA加密用的keyvarkey=randomString();//随机生成AES的key和ivvariv=randomString();varaKey=encryptedString(keyRSA,encodeURIComponent(key));//RSA加密AES的keyvaraIv=encryptedString(keyRSA,encodeURIComponent(iv));//RSA加密AES的ivvarselect1=$("#jffpqh").val();//参数1varselectText1_=getAesString(encodeURIComponent(select1),key,iv);//AES参数内容1//筛选条件的参数vardata={jffpqh:selectText1_,//参数1aKey:aKey,aIv:aIv}//console.log(data)$.ajax({type:"post",url:"/GHGL/Distribution/showFundsTerm",//请求的url，本例为springMVC框架async:true,data:data,dataType:"json",success:function(data){vardecryptedStr=getDAesString(data,key,iv);//解密}},error:function(XMLHttpRequest,textStatus,errorThrown){alert(XMLHttpRequest.status);alert(XMLHttpRequest.readyState);alert(textStatus);},complete:function(XMLHttpRequest,textStatus){this;//调用本次AJAX请求时传递的options参数}});}

6、总结：首先创建js文件，里面包含生成加密解密的 key 和iv、加密方法、机密方法，然后在后台写好相应的生成key，IV的工具类，工具类会读取 rsa.txt文件，然后通过js调用ajax进行加密查询，这是项目中用到的，所以给大家分享一下，希望能给大家提供帮助。

附件：http://down.51cto.com/data/2366466