com.sunny.tool.SecurityTool Maven / Gradle / Ivy
package com.sunny.tool;
//import org.apache.commons.codec.binary.Base64;
import org.springframework.util.Base64Utils;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.DESKeySpec;
import javax.crypto.spec.SecretKeySpec;
import java.security.*;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.HashMap;
import java.util.Map;
/**
* SecurityTool
* 编码和加解密工具类
*
* @author sunny
* @version 1.0.0
* @since 2015-01-06
*/
public final class SecurityTool {
public static final String ALGORITHM_MD5 = "MD5";
public static final String ALGORITHM_SHA1 = "SHA-1";
public static final String ALGORITHM_SHA256 = "SHA-256";
public static final String ALGORITHM_SHA512 = "SHA-512";
public static final String ALGORITHM_DES = "DES";
public static final String ALGORITHM_AES = "AES";
public static final String ALGORITHM_RSA = "RSA";
@SuppressWarnings(value = "unused")
public static final String DEFAULT_CHARSET = "UTF-8";
/**
* Used to build output as Hex
*/
private static final char[] DIGITS_LOWER = {'0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'a', 'b', 'c', 'd', 'e', 'f'};
private static final char[] DIGITS_UPPER = {'0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'A', 'B', 'C', 'D', 'E', 'F'};
private SecurityTool() {
}
/**
* encode base64,generally,the result may be convert to String
*
* @param data data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeBase64(byte[] data) {
try {
// return Base64.encodeBase64String(data);
// return new BASE64Encoder().encode(data);
return Base64Utils.encodeToString(data);
} catch (Exception e) {
throw new RuntimeException("encode base64 exception");
}
}
/**
* decode base64 string
*
* @param data data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static byte[] decodeBase64(String data) {
try {
// return Base64.decodeBase64(data);
// return new BASE64Decoder().decodeBuffer(data);
return Base64Utils.decodeFromString(data);
} catch (Exception e) {
throw new RuntimeException("decode base64 exception");
}
}
/**
* encode hex,generally,the result may be convert to String
*
* @param data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeHex(byte[] data) {
return new String(encodeHex(data, DIGITS_LOWER));
}
@SuppressWarnings(value = "unused")
public static String encodeHex(byte[] data, boolean lowerCase) {
return new String(encodeHex(data, lowerCase ? DIGITS_LOWER : DIGITS_UPPER));
}
/**
* decode hex
*
* @param data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static byte[] decodeHex(String data) {
try {
return decodeHex(data.toCharArray());
} catch (Exception e) {
throw new RuntimeException("decode hex exception");
}
}
/**
* md5 encode,generally,the result may be convert to String
*
* @param data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeMd5(String data) {
try {
MessageDigest digest = MessageDigest.getInstance(ALGORITHM_MD5);
return encodeHex(digest.digest(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("encode md5 exception");
}
}
/**
* 消息摘要算法的一种,被广泛认可的MD5算法的继任者.
* SHA算法家族除了其代表SHA-1算法以外,还有SHA-224、SHA-256、SHA-384
* 和SHA-512四种SHA算法的变体,以其摘要信息字节长度不同而命名
* ,通常将这组算法并称为SHA-2算法。摘要信息字节长度的差异是SHA-2和SHA-1算法的最大差异。
*
* @param data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeSha1(String data) {
try {
MessageDigest digest = MessageDigest.getInstance(ALGORITHM_SHA1);
return encodeHex(digest.digest(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("encode sha1 exception");
}
}
@SuppressWarnings(value = "unused")
public static String encodeSha256(String data) {
try {
MessageDigest digest = MessageDigest.getInstance(ALGORITHM_SHA256);
return encodeHex(digest.digest(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("encode sha256 exception");
}
}
@SuppressWarnings(value = "unused")
public static String encodeSha512(String data) {
try {
MessageDigest digest = MessageDigest.getInstance(ALGORITHM_SHA512);
return encodeHex(digest.digest(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("encode sha512 exception");
}
}
/**
* Data Encryption Standard,数据加密标准,速度较快,适用于加密大量数据的场合,加密后转出16进制
*
* @param data data
* @param key key length must greater than 8
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeDes(String data, String key) {
try {
SecureRandom sr = new SecureRandom();
DESKeySpec dks = new DESKeySpec(key.getBytes());
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(ALGORITHM_DES);
SecretKey secureKey = keyFactory.generateSecret(dks);
Cipher cipher = Cipher.getInstance(ALGORITHM_DES);
cipher.init(Cipher.ENCRYPT_MODE, secureKey, sr);
return encodeBase64((cipher.doFinal(data.getBytes())));
} catch (Exception e) {
throw new RuntimeException("encode des exception");
}
}
/**
* DES
*
* @param data data
* @param key key
* @return return
*/
@SuppressWarnings(value = "unused")
public static String decodeDes(String data, String key) {
try {
SecureRandom sr = new SecureRandom();
DESKeySpec dks = new DESKeySpec(key.getBytes());
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance(ALGORITHM_DES);
SecretKey secureKey = keyFactory.generateSecret(dks);
Cipher cipher = Cipher.getInstance(ALGORITHM_DES);
cipher.init(Cipher.DECRYPT_MODE, secureKey, sr);
return new String(cipher.doFinal(decodeBase64(data)));
} catch (Exception e) {
throw new RuntimeException("decode des exception");
}
}
/**
* Advanced Encryption Standard,下一代的加密算法标准,加密后转出16进制
*
* @param data data
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeAes(String data, String key) {
try {
KeyGenerator kGen = KeyGenerator.getInstance(ALGORITHM_AES);
kGen.init(128, new SecureRandom(key.getBytes()));
SecretKey secretKey = kGen.generateKey();
byte[] enCodeFormat = secretKey.getEncoded();
SecretKeySpec secretKeySpec = new SecretKeySpec(enCodeFormat, ALGORITHM_AES);
Cipher cipher = Cipher.getInstance(ALGORITHM_AES);
cipher.init(Cipher.ENCRYPT_MODE, secretKeySpec);
return encodeBase64(cipher.doFinal(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("encode aes exception");
}
}
/**
* decode aes
*
* @param data data
* @param key key
* @return return
*/
@SuppressWarnings(value = "unused")
public static String decodeAes(String data, String key) {
try {
KeyGenerator kGen = KeyGenerator.getInstance(ALGORITHM_AES);
kGen.init(128, new SecureRandom(key.getBytes()));
SecretKey secretKey = kGen.generateKey();
byte[] enCodeFormat = secretKey.getEncoded();
SecretKeySpec secretKeySpec = new SecretKeySpec(enCodeFormat, ALGORITHM_AES);
Cipher cipher = Cipher.getInstance(ALGORITHM_AES);
cipher.init(Cipher.DECRYPT_MODE, secretKeySpec);
return new String(cipher.doFinal(decodeBase64(data)));
} catch (Exception e) {
throw new RuntimeException("decode aes exception");
}
}
/**
* 生成rsa非对称密钥的公钥和私钥,据说不能在ios中使用。可以使用openssl替换。
*/
@SuppressWarnings(value = "unused")
public static Map createRsaKeyPair() {
try {
KeyPairGenerator keyPairGen = KeyPairGenerator.getInstance(ALGORITHM_RSA);
keyPairGen.initialize(1024);
KeyPair keyPair = keyPairGen.generateKeyPair();
RSAPublicKey publicKey = (RSAPublicKey) keyPair.getPublic();
RSAPrivateKey privateKey = (RSAPrivateKey) keyPair.getPrivate();
HashMap result = new HashMap();
result.put("PublicKey", encodeBase64(publicKey.getEncoded()));
result.put("PrivateKey", encodeBase64(privateKey.getEncoded()));
return result;
} catch (Exception e) {
throw new RuntimeException("create rsa key pair exception");
}
}
/**
* encode rsa
*
* @param data data
* @param key key
* @return return
*/
@SuppressWarnings(value = "unused")
public static String encodeRsa(String data, String key) {
try {
X509EncodedKeySpec x509KeySpec = new X509EncodedKeySpec(decodeBase64(key));
KeyFactory keyFactory = KeyFactory.getInstance(ALGORITHM_RSA);
Key publicKey = keyFactory.generatePublic(x509KeySpec);
Cipher cipher = Cipher.getInstance(keyFactory.getAlgorithm());
cipher.init(Cipher.ENCRYPT_MODE, publicKey);
return encodeBase64(cipher.doFinal(data.getBytes()));
} catch (Exception e) {
throw new RuntimeException("encode rsa exception");
}
}
/**
* decode rsa
*
* @param data data
* @param key key
* @return return
*/
@SuppressWarnings(value = "unused")
public static String decodeRsa(String data, String key) {
try {
PKCS8EncodedKeySpec pKCS8EncodedKeySpec = new PKCS8EncodedKeySpec(decodeBase64(key));
KeyFactory keyFactory = KeyFactory.getInstance(ALGORITHM_RSA);
Key privateKey = keyFactory.generatePrivate(pKCS8EncodedKeySpec);
Cipher cipher = Cipher.getInstance(keyFactory.getAlgorithm());
cipher.init(Cipher.DECRYPT_MODE, privateKey);
return new String(cipher.doFinal(decodeBase64(data)));
} catch (Exception e) {
throw new RuntimeException("decode rsa exception");
}
}
/**
* select from codec
*/
protected static char[] encodeHex(final byte[] data, final char[] toDigits) {
final int l = data.length;
final char[] out = new char[l << 1];
for (int i = 0, j = 0; i < l; i++) {
out[j++] = toDigits[(0xF0 & data[i]) >>> 4];
out[j++] = toDigits[0x0F & data[i]];
}
return out;
}
/**
* select from codec
*/
protected static byte[] decodeHex(final char[] data) {
final int len = data.length;
if ((len & 0x01) != 0) {
throw new RuntimeException("Odd number of characters.");
}
final byte[] out = new byte[len >> 1];
// two characters form the hex value.
for (int i = 0, j = 0; j < len; i++) {
int f = toDigit(data[j], j) << 4;
j++;
f = f | toDigit(data[j], j);
j++;
out[i] = (byte) (f & 0xFF);
}
return out;
}
/**
* select from codec
*/
protected static int toDigit(final char ch, final int index) {
final int digit = Character.digit(ch, 16);
if (digit == -1) {
throw new RuntimeException("Illegal hexadecimal character " + ch + " at index " + index);
}
return digit;
}
} © 2015 - 2024 Weber Informatics LLC | Privacy Policy