shop--12.升级--加密数据库明文密码
使用PropertyPlaceholderConfigurer实现对称加密
使用DES进行加密
编写DESUtil加密的工具类
package com.shop.util; import sun.misc.BASE64Decoder; import sun.misc.BASE64Encoder; import javax.crypto.Cipher; import javax.crypto.KeyGenerator; import java.io.IOException; import java.io.UnsupportedEncodingException; import java.security.Key; import java.security.NoSuchAlgorithmException; import java.security.SecureRandom; /** * Created by Skye on 2018/5/12. */ public class DESUtils { private static Key key; //设置秘钥key private static String KEY_STR = "myKey"; private static String CHARSETNAME = "UTF-8"; private static String ALGORITHM = "DES"; //生成DES算法实例 static{ try { //生成DES算法对象 KeyGenerator keyGenerator = KeyGenerator.getInstance( ALGORITHM ); //运用SHA1安全策略 SecureRandom secureRandom = SecureRandom.getInstance("SHA1PRNG"); //设置秘钥种子 secureRandom.setSeed( KEY_STR.getBytes() ); //初始化基于SHA1的算法对象 keyGenerator.init(secureRandom); //生成秘钥对象 key = keyGenerator.generateKey(); keyGenerator = null; } catch (NoSuchAlgorithmException e) { e.printStackTrace(); } } /** * 将信息进行加密 * @param str * @return */ public static String getEncryptString(String str){ //基于BASE64进行编码,接收byte,并转化为String BASE64Encoder base64Encoder = new BASE64Encoder(); try { //按utf-8进行编码 byte[] bytes = str.getBytes(CHARSETNAME); //获取加密对象 Cipher cipher = Cipher.getInstance( ALGORITHM ); //初始化加密信息 cipher.init( Cipher.ENCRYPT_MODE, key ); //加密 byte[] doFinal = cipher.doFinal(bytes); //返回encode好的String对象 return base64Encoder.encode( doFinal ); } catch (Exception e) { throw new RuntimeException( e ); } } /** * 获取解密后的信息 * @param str * @return */ public static String getDecryptString(String str){ //基于BASE64进行编码,接收byte,并转化为String BASE64Decoder base64Decoder = new BASE64Decoder(); try { //将字符串decode成byte[] byte[] bytes = base64Decoder.decodeBuffer( str ); //获取解密对象 Cipher cipher = Cipher.getInstance( ALGORITHM ); //初始化解密信息 cipher.init( Cipher.DECRYPT_MODE, key ); //解密 byte[] doFinal = cipher.doFinal(bytes); //返回解密后的信息 return new String(doFinal, CHARSETNAME); } catch (Exception e) { throw new RuntimeException( e ); } } public static void main(String[] args){ System.out.println(getEncryptString( "root" )); System.out.println(getEncryptString( "1234" )); } }
编写继承了PropertyPlaceholderConfigurer的类,来实现对相应的关键字进行解密
package com.shop.util; import org.springframework.beans.factory.config.PropertyPlaceholderConfigurer; /** * Created by Skye on 2018/5/13. */ public class EncryptPropertyPlaceholderConfigurer extends PropertyPlaceholderConfigurer { //需要加密的字段数组 private String[] encryptPropNames = {"jdbc.username", "jdbc.password"}; /** * 对关键属性进行转换 * @param propertyName * @param propertyValue * @return */ @Override protected String convertProperty(String propertyName, String propertyValue) { if(isEncryptProp(propertyName)){ //对已加密的字段进行解密 String decryptValue = DESUtils.getDecryptString(propertyValue); return decryptValue; } else{ return propertyValue; } } /** * 判断该属性是否已加密 * @param propertyName * @return */ private boolean isEncryptProp(String propertyName){ //若等于需要加密的field,则进行解密 for(String encrptpropertyName : encryptPropNames){ if(encrptpropertyName.equals(propertyName)) return true; } return false; } }
配置spring-dao.xml
将context:property-placeholder改为下面的
<!-- 1.配置数据库相关参数properties的属性:${url} --> <!--<context:property-placeholder location="classpath:jdbc.properties"/>--> <bean class="com.shop.util.EncryptPropertyPlaceholderConfigurer"> <property name="locations"> <list> <value>classpath:jdbc.properties</value> </list> </property> <property name="fileEncoding" value="utf-8"/> </bean>
然后就可以了,首先要将jdbc.properties中的相应位置上的value值改为加密之后的值。然后才能调用这个方法进行解密。