From d1f26741bddf6f512d62c0100d42c52be8d37e76 Mon Sep 17 00:00:00 2001
From: admin <weikou2014>
Date: 星期六, 06 二月 2021 15:35:40 +0800
Subject: [PATCH] 工具类优化
---
utils/src/main/java/com/qq/weixin/mp/aes/WXBizMsgCrypt.java | 576 ++++++++++++++++++++++++++++----------------------------
1 files changed, 288 insertions(+), 288 deletions(-)
diff --git a/utils/src/main/java/com/qq/weixin/mp/aes/WXBizMsgCrypt.java b/utils/src/main/java/com/qq/weixin/mp/aes/WXBizMsgCrypt.java
index bd4ad7b..ac9dd4a 100644
--- a/utils/src/main/java/com/qq/weixin/mp/aes/WXBizMsgCrypt.java
+++ b/utils/src/main/java/com/qq/weixin/mp/aes/WXBizMsgCrypt.java
@@ -1,289 +1,289 @@
-/**
- * 瀵瑰叕浼楀钩鍙板彂閫佺粰鍏紬璐﹀彿鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜.
- *
- * @copyright Copyright (c) 1998-2014 Tencent Inc.
- */
-
-// ------------------------------------------------------------------------
-
-/**
- * 閽堝org.apache.commons.codec.binary.Base64锛�
- * 闇�瑕佸鍏ユ灦鍖卌ommons-codec-1.9锛堟垨commons-codec-1.8绛夊叾浠栫増鏈級
- * 瀹樻柟涓嬭浇鍦板潃锛歨ttp://commons.apache.org/proper/commons-codec/download_codec.cgi
- */
-package com.qq.weixin.mp.aes;
-
-import java.nio.charset.Charset;
-import java.util.Arrays;
-import java.util.Random;
-
-import javax.crypto.Cipher;
-import javax.crypto.spec.IvParameterSpec;
-import javax.crypto.spec.SecretKeySpec;
-
-import org.apache.commons.codec.binary.Base64;
-
-/**
- * 鎻愪緵鎺ユ敹鍜屾帹閫佺粰鍏紬骞冲彴娑堟伅鐨勫姞瑙e瘑鎺ュ彛(UTF8缂栫爜鐨勫瓧绗︿覆).
- * <ol>
- * <li>绗笁鏂瑰洖澶嶅姞瀵嗘秷鎭粰鍏紬骞冲彴</li>
- * <li>绗笁鏂规敹鍒板叕浼楀钩鍙板彂閫佺殑娑堟伅锛岄獙璇佹秷鎭殑瀹夊叏鎬э紝骞跺娑堟伅杩涜瑙e瘑銆�</li>
- * </ol>
- * 璇存槑锛氬紓甯竕ava.security.InvalidKeyException:illegal Key Size鐨勮В鍐虫柟妗�
- * <ol>
- * <li>鍦ㄥ畼鏂圭綉绔欎笅杞絁CE鏃犻檺鍒舵潈闄愮瓥鐣ユ枃浠讹紙JDK7鐨勪笅杞藉湴鍧�锛�
- * http://www.oracle.com/technetwork/java/javase/downloads/jce-7-download-432124.html</li>
- * <li>涓嬭浇鍚庤В鍘嬶紝鍙互鐪嬪埌local_policy.jar鍜孶S_export_policy.jar浠ュ強readme.txt</li>
- * <li>濡傛灉瀹夎浜咼RE锛屽皢涓や釜jar鏂囦欢鏀惧埌%JRE_HOME%\lib\security鐩綍涓嬭鐩栧師鏉ョ殑鏂囦欢</li>
- * <li>濡傛灉瀹夎浜咼DK锛屽皢涓や釜jar鏂囦欢鏀惧埌%JDK_HOME%\jre\lib\security鐩綍涓嬭鐩栧師鏉ユ枃浠�</li>
- * </ol>
- */
-public class WXBizMsgCrypt {
- static Charset CHARSET = Charset.forName("utf-8");
- Base64 base64 = new Base64();
- byte[] aesKey;
- String token;
- String corpId;
-
- /**
- * 鏋勯�犲嚱鏁�
- * @param token 鍏紬骞冲彴涓婏紝寮�鍙戣�呰缃殑token
- * @param encodingAesKey 鍏紬骞冲彴涓婏紝寮�鍙戣�呰缃殑EncodingAESKey
- * @param corpId 浼佷笟鐨刢orpid
- *
- * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
- */
- public WXBizMsgCrypt(String token, String encodingAesKey, String corpId) throws AesException {
- if (encodingAesKey.length() != 43) {
- throw new AesException(AesException.IllegalAesKey);
- }
-
- this.token = token;
- this.corpId = corpId;
- aesKey = Base64.decodeBase64(encodingAesKey + "=");
- }
-
- // 鐢熸垚4涓瓧鑺傜殑缃戠粶瀛楄妭搴�
- byte[] getNetworkBytesOrder(int sourceNumber) {
- byte[] orderBytes = new byte[4];
- orderBytes[3] = (byte) (sourceNumber & 0xFF);
- orderBytes[2] = (byte) (sourceNumber >> 8 & 0xFF);
- orderBytes[1] = (byte) (sourceNumber >> 16 & 0xFF);
- orderBytes[0] = (byte) (sourceNumber >> 24 & 0xFF);
- return orderBytes;
- }
-
- // 杩樺師4涓瓧鑺傜殑缃戠粶瀛楄妭搴�
- int recoverNetworkBytesOrder(byte[] orderBytes) {
- int sourceNumber = 0;
- for (int i = 0; i < 4; i++) {
- sourceNumber <<= 8;
- sourceNumber |= orderBytes[i] & 0xff;
- }
- return sourceNumber;
- }
-
- // 闅忔満鐢熸垚16浣嶅瓧绗︿覆
- String getRandomStr() {
- String base = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
- Random random = new Random();
- StringBuffer sb = new StringBuffer();
- for (int i = 0; i < 16; i++) {
- int number = random.nextInt(base.length());
- sb.append(base.charAt(number));
- }
- return sb.toString();
- }
-
- /**
- * 瀵规槑鏂囪繘琛屽姞瀵�.
- *
- * @param text 闇�瑕佸姞瀵嗙殑鏄庢枃
- * @return 鍔犲瘑鍚巄ase64缂栫爜鐨勫瓧绗︿覆
- * @throws AesException aes鍔犲瘑澶辫触
- */
- String encrypt(String randomStr, String text) throws AesException {
- ByteGroup byteCollector = new ByteGroup();
- byte[] randomStrBytes = randomStr.getBytes(CHARSET);
- byte[] textBytes = text.getBytes(CHARSET);
- byte[] networkBytesOrder = getNetworkBytesOrder(textBytes.length);
- byte[] corpidBytes = corpId.getBytes(CHARSET);
-
- // randomStr + networkBytesOrder + text + corpid
- byteCollector.addBytes(randomStrBytes);
- byteCollector.addBytes(networkBytesOrder);
- byteCollector.addBytes(textBytes);
- byteCollector.addBytes(corpidBytes);
-
- // ... + pad: 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏�
- byte[] padBytes = PKCS7Encoder.encode(byteCollector.size());
- byteCollector.addBytes(padBytes);
-
- // 鑾峰緱鏈�缁堢殑瀛楄妭娴�, 鏈姞瀵�
- byte[] unencrypted = byteCollector.toBytes();
-
- try {
- // 璁剧疆鍔犲瘑妯″紡涓篈ES鐨凜BC妯″紡
- Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding");
- SecretKeySpec keySpec = new SecretKeySpec(aesKey, "AES");
- IvParameterSpec iv = new IvParameterSpec(aesKey, 0, 16);
- cipher.init(Cipher.ENCRYPT_MODE, keySpec, iv);
-
- // 鍔犲瘑
- byte[] encrypted = cipher.doFinal(unencrypted);
-
- // 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜
- String base64Encrypted = base64.encodeToString(encrypted);
-
- return base64Encrypted;
- } catch (Exception e) {
- e.printStackTrace();
- throw new AesException(AesException.EncryptAESError);
- }
- }
-
- /**
- * 瀵瑰瘑鏂囪繘琛岃В瀵�.
- *
- * @param text 闇�瑕佽В瀵嗙殑瀵嗘枃
- * @return 瑙e瘑寰楀埌鐨勬槑鏂�
- * @throws AesException aes瑙e瘑澶辫触
- */
- String decrypt(String text) throws AesException {
- byte[] original;
- try {
- // 璁剧疆瑙e瘑妯″紡涓篈ES鐨凜BC妯″紡
- Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding");
- SecretKeySpec key_spec = new SecretKeySpec(aesKey, "AES");
- IvParameterSpec iv = new IvParameterSpec(Arrays.copyOfRange(aesKey, 0, 16));
- cipher.init(Cipher.DECRYPT_MODE, key_spec, iv);
-
- // 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮�
- byte[] encrypted = Base64.decodeBase64(text);
-
- // 瑙e瘑
- original = cipher.doFinal(encrypted);
- } catch (Exception e) {
- e.printStackTrace();
- throw new AesException(AesException.DecryptAESError);
- }
-
- String xmlContent, from_corpid;
- try {
- // 鍘婚櫎琛ヤ綅瀛楃
- byte[] bytes = PKCS7Encoder.decode(original);
-
- // 鍒嗙16浣嶉殢鏈哄瓧绗︿覆,缃戠粶瀛楄妭搴忓拰corpId
- byte[] networkOrder = Arrays.copyOfRange(bytes, 16, 20);
-
- int xmlLength = recoverNetworkBytesOrder(networkOrder);
-
- xmlContent = new String(Arrays.copyOfRange(bytes, 20, 20 + xmlLength), CHARSET);
- from_corpid = new String(Arrays.copyOfRange(bytes, 20 + xmlLength, bytes.length),
- CHARSET);
- } catch (Exception e) {
- e.printStackTrace();
- throw new AesException(AesException.IllegalBuffer);
- }
-
- // corpid涓嶇浉鍚岀殑鎯呭喌
- if (!from_corpid.equals(corpId)) {
- throw new AesException(AesException.ValidateCorpidError);
- }
- return xmlContent;
-
- }
-
- /**
- * 灏嗗叕浼楀钩鍙板洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘.
- * <ol>
- * <li>瀵硅鍙戦�佺殑娑堟伅杩涜AES-CBC鍔犲瘑</li>
- * <li>鐢熸垚瀹夊叏绛惧悕</li>
- * <li>灏嗘秷鎭瘑鏂囧拰瀹夊叏绛惧悕鎵撳寘鎴恱ml鏍煎紡</li>
- * </ol>
- *
- * @param replyMsg 鍏紬骞冲彴寰呭洖澶嶇敤鎴风殑娑堟伅锛寈ml鏍煎紡鐨勫瓧绗︿覆
- * @param timeStamp 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp
- * @param nonce 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once
- *
- * @return 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨剎ml鏍煎紡鐨勫瓧绗︿覆
- * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
- */
- public String EncryptMsg(String replyMsg, String timeStamp, String nonce) throws AesException {
- // 鍔犲瘑
- String encrypt = encrypt(getRandomStr(), replyMsg);
-
- // 鐢熸垚瀹夊叏绛惧悕
- if (timeStamp == "") {
- timeStamp = Long.toString(System.currentTimeMillis());
- }
-
- String signature = SHA1.getSHA1(token, timeStamp, nonce, encrypt);
-
- // System.out.println("鍙戦�佺粰骞冲彴鐨勭鍚嶆槸: " + signature[1].toString());
- // 鐢熸垚鍙戦�佺殑xml
- String result = XMLParse.generate(encrypt, signature, timeStamp, nonce);
- return result;
- }
-
- /**
- * 妫�楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃.
- * <ol>
- * <li>鍒╃敤鏀跺埌鐨勫瘑鏂囩敓鎴愬畨鍏ㄧ鍚嶏紝杩涜绛惧悕楠岃瘉</li>
- * <li>鑻ラ獙璇侀�氳繃锛屽垯鎻愬彇xml涓殑鍔犲瘑娑堟伅</li>
- * <li>瀵规秷鎭繘琛岃В瀵�</li>
- * </ol>
- *
- * @param msgSignature 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature
- * @param timeStamp 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp
- * @param nonce 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once
- * @param postData 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹�
- *
- * @return 瑙e瘑鍚庣殑鍘熸枃
- * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
- */
- public String DecryptMsg(String msgSignature, String timeStamp, String nonce, String postData)
- throws AesException {
-
- // 瀵嗛挜锛屽叕浼楄处鍙风殑app secret
- // 鎻愬彇瀵嗘枃
- Object[] encrypt = XMLParse.extract(postData);
-
- // 楠岃瘉瀹夊叏绛惧悕
- String signature = SHA1.getSHA1(token, timeStamp, nonce, encrypt[1].toString());
-
- // 鍜孶RL涓殑绛惧悕姣旇緝鏄惁鐩哥瓑
- // System.out.println("绗笁鏂规敹鍒癠RL涓殑绛惧悕锛�" + msg_sign);
- // System.out.println("绗笁鏂规牎楠岀鍚嶏細" + signature);
- if (!signature.equals(msgSignature)) {
- throw new AesException(AesException.ValidateSignatureError);
- }
-
- // 瑙e瘑
- String result = decrypt(encrypt[1].toString());
- return result;
- }
-
- /**
- * 楠岃瘉URL
- * @param msgSignature 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature
- * @param timeStamp 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp
- * @param nonce 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once
- * @param echoStr 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr
- *
- * @return 瑙e瘑涔嬪悗鐨別chostr
- * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
- */
- public String VerifyURL(String msgSignature, String timeStamp, String nonce, String echoStr)
- throws AesException {
- String signature = SHA1.getSHA1(token, timeStamp, nonce, echoStr);
-
- if (!signature.equals(msgSignature)) {
- throw new AesException(AesException.ValidateSignatureError);
- }
-
- String result = decrypt(echoStr);
- return result;
- }
-
+/**
+ * 瀵瑰叕浼楀钩鍙板彂閫佺粰鍏紬璐﹀彿鐨勬秷鎭姞瑙e瘑绀轰緥浠g爜.
+ *
+ * @copyright Copyright (c) 1998-2014 Tencent Inc.
+ */
+
+// ------------------------------------------------------------------------
+
+/**
+ * 閽堝org.apache.commons.codec.binary.Base64锛�
+ * 闇�瑕佸鍏ユ灦鍖卌ommons-codec-1.9锛堟垨commons-codec-1.8绛夊叾浠栫増鏈級
+ * 瀹樻柟涓嬭浇鍦板潃锛歨ttp://commons.apache.org/proper/commons-codec/download_codec.cgi
+ */
+package com.qq.weixin.mp.aes;
+
+import java.nio.charset.Charset;
+import java.util.Arrays;
+import java.util.Random;
+
+import javax.crypto.Cipher;
+import javax.crypto.spec.IvParameterSpec;
+import javax.crypto.spec.SecretKeySpec;
+
+import org.apache.commons.codec.binary.Base64;
+
+/**
+ * 鎻愪緵鎺ユ敹鍜屾帹閫佺粰鍏紬骞冲彴娑堟伅鐨勫姞瑙e瘑鎺ュ彛(UTF8缂栫爜鐨勫瓧绗︿覆).
+ * <ol>
+ * <li>绗笁鏂瑰洖澶嶅姞瀵嗘秷鎭粰鍏紬骞冲彴</li>
+ * <li>绗笁鏂规敹鍒板叕浼楀钩鍙板彂閫佺殑娑堟伅锛岄獙璇佹秷鎭殑瀹夊叏鎬э紝骞跺娑堟伅杩涜瑙e瘑銆�</li>
+ * </ol>
+ * 璇存槑锛氬紓甯竕ava.security.InvalidKeyException:illegal Key Size鐨勮В鍐虫柟妗�
+ * <ol>
+ * <li>鍦ㄥ畼鏂圭綉绔欎笅杞絁CE鏃犻檺鍒舵潈闄愮瓥鐣ユ枃浠讹紙JDK7鐨勪笅杞藉湴鍧�锛�
+ * http://www.oracle.com/technetwork/java/javase/downloads/jce-7-download-432124.html</li>
+ * <li>涓嬭浇鍚庤В鍘嬶紝鍙互鐪嬪埌local_policy.jar鍜孶S_export_policy.jar浠ュ強readme.txt</li>
+ * <li>濡傛灉瀹夎浜咼RE锛屽皢涓や釜jar鏂囦欢鏀惧埌%JRE_HOME%\lib\security鐩綍涓嬭鐩栧師鏉ョ殑鏂囦欢</li>
+ * <li>濡傛灉瀹夎浜咼DK锛屽皢涓や釜jar鏂囦欢鏀惧埌%JDK_HOME%\jre\lib\security鐩綍涓嬭鐩栧師鏉ユ枃浠�</li>
+ * </ol>
+ */
+public class WXBizMsgCrypt {
+ static Charset CHARSET = Charset.forName("utf-8");
+ Base64 base64 = new Base64();
+ byte[] aesKey;
+ String token;
+ String corpId;
+
+ /**
+ * 鏋勯�犲嚱鏁�
+ * @param token 鍏紬骞冲彴涓婏紝寮�鍙戣�呰缃殑token
+ * @param encodingAesKey 鍏紬骞冲彴涓婏紝寮�鍙戣�呰缃殑EncodingAESKey
+ * @param corpId 浼佷笟鐨刢orpid
+ *
+ * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
+ */
+ public WXBizMsgCrypt(String token, String encodingAesKey, String corpId) throws AesException {
+ if (encodingAesKey.length() != 43) {
+ throw new AesException(AesException.IllegalAesKey);
+ }
+
+ this.token = token;
+ this.corpId = corpId;
+ aesKey = Base64.decodeBase64(encodingAesKey + "=");
+ }
+
+ // 鐢熸垚4涓瓧鑺傜殑缃戠粶瀛楄妭搴�
+ byte[] getNetworkBytesOrder(int sourceNumber) {
+ byte[] orderBytes = new byte[4];
+ orderBytes[3] = (byte) (sourceNumber & 0xFF);
+ orderBytes[2] = (byte) (sourceNumber >> 8 & 0xFF);
+ orderBytes[1] = (byte) (sourceNumber >> 16 & 0xFF);
+ orderBytes[0] = (byte) (sourceNumber >> 24 & 0xFF);
+ return orderBytes;
+ }
+
+ // 杩樺師4涓瓧鑺傜殑缃戠粶瀛楄妭搴�
+ int recoverNetworkBytesOrder(byte[] orderBytes) {
+ int sourceNumber = 0;
+ for (int i = 0; i < 4; i++) {
+ sourceNumber <<= 8;
+ sourceNumber |= orderBytes[i] & 0xff;
+ }
+ return sourceNumber;
+ }
+
+ // 闅忔満鐢熸垚16浣嶅瓧绗︿覆
+ String getRandomStr() {
+ String base = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789";
+ Random random = new Random();
+ StringBuffer sb = new StringBuffer();
+ for (int i = 0; i < 16; i++) {
+ int number = random.nextInt(base.length());
+ sb.append(base.charAt(number));
+ }
+ return sb.toString();
+ }
+
+ /**
+ * 瀵规槑鏂囪繘琛屽姞瀵�.
+ *
+ * @param text 闇�瑕佸姞瀵嗙殑鏄庢枃
+ * @return 鍔犲瘑鍚巄ase64缂栫爜鐨勫瓧绗︿覆
+ * @throws AesException aes鍔犲瘑澶辫触
+ */
+ String encrypt(String randomStr, String text) throws AesException {
+ ByteGroup byteCollector = new ByteGroup();
+ byte[] randomStrBytes = randomStr.getBytes(CHARSET);
+ byte[] textBytes = text.getBytes(CHARSET);
+ byte[] networkBytesOrder = getNetworkBytesOrder(textBytes.length);
+ byte[] corpidBytes = corpId.getBytes(CHARSET);
+
+ // randomStr + networkBytesOrder + text + corpid
+ byteCollector.addBytes(randomStrBytes);
+ byteCollector.addBytes(networkBytesOrder);
+ byteCollector.addBytes(textBytes);
+ byteCollector.addBytes(corpidBytes);
+
+ // ... + pad: 浣跨敤鑷畾涔夌殑濉厖鏂瑰紡瀵规槑鏂囪繘琛岃ˉ浣嶅~鍏�
+ byte[] padBytes = PKCS7Encoder.encode(byteCollector.size());
+ byteCollector.addBytes(padBytes);
+
+ // 鑾峰緱鏈�缁堢殑瀛楄妭娴�, 鏈姞瀵�
+ byte[] unencrypted = byteCollector.toBytes();
+
+ try {
+ // 璁剧疆鍔犲瘑妯″紡涓篈ES鐨凜BC妯″紡
+ Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding");
+ SecretKeySpec keySpec = new SecretKeySpec(aesKey, "AES");
+ IvParameterSpec iv = new IvParameterSpec(aesKey, 0, 16);
+ cipher.init(Cipher.ENCRYPT_MODE, keySpec, iv);
+
+ // 鍔犲瘑
+ byte[] encrypted = cipher.doFinal(unencrypted);
+
+ // 浣跨敤BASE64瀵瑰姞瀵嗗悗鐨勫瓧绗︿覆杩涜缂栫爜
+ String base64Encrypted = base64.encodeToString(encrypted);
+
+ return base64Encrypted;
+ } catch (Exception e) {
+ e.printStackTrace();
+ throw new AesException(AesException.EncryptAESError);
+ }
+ }
+
+ /**
+ * 瀵瑰瘑鏂囪繘琛岃В瀵�.
+ *
+ * @param text 闇�瑕佽В瀵嗙殑瀵嗘枃
+ * @return 瑙e瘑寰楀埌鐨勬槑鏂�
+ * @throws AesException aes瑙e瘑澶辫触
+ */
+ String decrypt(String text) throws AesException {
+ byte[] original;
+ try {
+ // 璁剧疆瑙e瘑妯″紡涓篈ES鐨凜BC妯″紡
+ Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding");
+ SecretKeySpec key_spec = new SecretKeySpec(aesKey, "AES");
+ IvParameterSpec iv = new IvParameterSpec(Arrays.copyOfRange(aesKey, 0, 16));
+ cipher.init(Cipher.DECRYPT_MODE, key_spec, iv);
+
+ // 浣跨敤BASE64瀵瑰瘑鏂囪繘琛岃В鐮�
+ byte[] encrypted = Base64.decodeBase64(text);
+
+ // 瑙e瘑
+ original = cipher.doFinal(encrypted);
+ } catch (Exception e) {
+ e.printStackTrace();
+ throw new AesException(AesException.DecryptAESError);
+ }
+
+ String xmlContent, from_corpid;
+ try {
+ // 鍘婚櫎琛ヤ綅瀛楃
+ byte[] bytes = PKCS7Encoder.decode(original);
+
+ // 鍒嗙16浣嶉殢鏈哄瓧绗︿覆,缃戠粶瀛楄妭搴忓拰corpId
+ byte[] networkOrder = Arrays.copyOfRange(bytes, 16, 20);
+
+ int xmlLength = recoverNetworkBytesOrder(networkOrder);
+
+ xmlContent = new String(Arrays.copyOfRange(bytes, 20, 20 + xmlLength), CHARSET);
+ from_corpid = new String(Arrays.copyOfRange(bytes, 20 + xmlLength, bytes.length),
+ CHARSET);
+ } catch (Exception e) {
+ e.printStackTrace();
+ throw new AesException(AesException.IllegalBuffer);
+ }
+
+ // corpid涓嶇浉鍚岀殑鎯呭喌
+ if (!from_corpid.equals(corpId)) {
+ throw new AesException(AesException.ValidateCorpidError);
+ }
+ return xmlContent;
+
+ }
+
+ /**
+ * 灏嗗叕浼楀钩鍙板洖澶嶇敤鎴风殑娑堟伅鍔犲瘑鎵撳寘.
+ * <ol>
+ * <li>瀵硅鍙戦�佺殑娑堟伅杩涜AES-CBC鍔犲瘑</li>
+ * <li>鐢熸垚瀹夊叏绛惧悕</li>
+ * <li>灏嗘秷鎭瘑鏂囧拰瀹夊叏绛惧悕鎵撳寘鎴恱ml鏍煎紡</li>
+ * </ol>
+ *
+ * @param replyMsg 鍏紬骞冲彴寰呭洖澶嶇敤鎴风殑娑堟伅锛寈ml鏍煎紡鐨勫瓧绗︿覆
+ * @param timeStamp 鏃堕棿鎴筹紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨則imestamp
+ * @param nonce 闅忔満涓诧紝鍙互鑷繁鐢熸垚锛屼篃鍙互鐢║RL鍙傛暟鐨刵once
+ *
+ * @return 鍔犲瘑鍚庣殑鍙互鐩存帴鍥炲鐢ㄦ埛鐨勫瘑鏂囷紝鍖呮嫭msg_signature, timestamp, nonce, encrypt鐨剎ml鏍煎紡鐨勫瓧绗︿覆
+ * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
+ */
+ public String EncryptMsg(String replyMsg, String timeStamp, String nonce) throws AesException {
+ // 鍔犲瘑
+ String encrypt = encrypt(getRandomStr(), replyMsg);
+
+ // 鐢熸垚瀹夊叏绛惧悕
+ if (timeStamp == "") {
+ timeStamp = Long.toString(System.currentTimeMillis());
+ }
+
+ String signature = SHA1.getSHA1(token, timeStamp, nonce, encrypt);
+
+ // System.out.println("鍙戦�佺粰骞冲彴鐨勭鍚嶆槸: " + signature[1].toString());
+ // 鐢熸垚鍙戦�佺殑xml
+ String result = XMLParse.generate(encrypt, signature, timeStamp, nonce);
+ return result;
+ }
+
+ /**
+ * 妫�楠屾秷鎭殑鐪熷疄鎬э紝骞朵笖鑾峰彇瑙e瘑鍚庣殑鏄庢枃.
+ * <ol>
+ * <li>鍒╃敤鏀跺埌鐨勫瘑鏂囩敓鎴愬畨鍏ㄧ鍚嶏紝杩涜绛惧悕楠岃瘉</li>
+ * <li>鑻ラ獙璇侀�氳繃锛屽垯鎻愬彇xml涓殑鍔犲瘑娑堟伅</li>
+ * <li>瀵规秷鎭繘琛岃В瀵�</li>
+ * </ol>
+ *
+ * @param msgSignature 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature
+ * @param timeStamp 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp
+ * @param nonce 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once
+ * @param postData 瀵嗘枃锛屽搴擯OST璇锋眰鐨勬暟鎹�
+ *
+ * @return 瑙e瘑鍚庣殑鍘熸枃
+ * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
+ */
+ public String DecryptMsg(String msgSignature, String timeStamp, String nonce, String postData)
+ throws AesException {
+
+ // 瀵嗛挜锛屽叕浼楄处鍙风殑app secret
+ // 鎻愬彇瀵嗘枃
+ Object[] encrypt = XMLParse.extract(postData);
+
+ // 楠岃瘉瀹夊叏绛惧悕
+ String signature = SHA1.getSHA1(token, timeStamp, nonce, encrypt[1].toString());
+
+ // 鍜孶RL涓殑绛惧悕姣旇緝鏄惁鐩哥瓑
+ // System.out.println("绗笁鏂规敹鍒癠RL涓殑绛惧悕锛�" + msg_sign);
+ // System.out.println("绗笁鏂规牎楠岀鍚嶏細" + signature);
+ if (!signature.equals(msgSignature)) {
+ throw new AesException(AesException.ValidateSignatureError);
+ }
+
+ // 瑙e瘑
+ String result = decrypt(encrypt[1].toString());
+ return result;
+ }
+
+ /**
+ * 楠岃瘉URL
+ * @param msgSignature 绛惧悕涓诧紝瀵瑰簲URL鍙傛暟鐨刴sg_signature
+ * @param timeStamp 鏃堕棿鎴筹紝瀵瑰簲URL鍙傛暟鐨則imestamp
+ * @param nonce 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨刵once
+ * @param echoStr 闅忔満涓诧紝瀵瑰簲URL鍙傛暟鐨別chostr
+ *
+ * @return 瑙e瘑涔嬪悗鐨別chostr
+ * @throws AesException 鎵ц澶辫触锛岃鏌ョ湅璇ュ紓甯哥殑閿欒鐮佸拰鍏蜂綋鐨勯敊璇俊鎭�
+ */
+ public String VerifyURL(String msgSignature, String timeStamp, String nonce, String echoStr)
+ throws AesException {
+ String signature = SHA1.getSHA1(token, timeStamp, nonce, echoStr);
+
+ if (!signature.equals(msgSignature)) {
+ throw new AesException(AesException.ValidateSignatureError);
+ }
+
+ String result = decrypt(echoStr);
+ return result;
+ }
+
}
\ No newline at end of file
--
Gitblit v1.8.0