模拟一个http 请求的json格式报文,带 rsa 签名操作
一、对需要加密的字符串,定义RsaSignUnsign 类,代码如下:
实现了:
1、实现了生成新的pubkey、pri_key方法;
2、将新生成的keys 写入文件;
3、从文件获取pubkey、pri_key
4、对传入的字符串进行签名,转为bytes类型串,签名,转为base64串,再转为str 串
5、对传入的字符串验签,传入字符串转为bytes串,解base64格式,与原字符串的bytes格式进行验签
#coding=utf-8
'''
rsa字符串签名
'''
import rsa
import traceback
import base64
class RsaSignUnsign():
def __init__(self):
self.pubkey=None
self.pri_key=None
def get_newkeys(self,n=1024):
self.pubkey,self.pri_key=rsa.newkeys(n)
return self.pubkey,self.pri_key
def get_keys(self):
if self.pubkey != None and self.pri_key != None:
return self.pubkey,self.pri_key
return None
#如果路径未输入,会在当前路径生成pubkey.pem、pri_key.pem
def write_keytofile(self,pubkey_path='pubkey.pem',pri_key_path='pri_key.pem'):
with open(pubkey_path,'w',encoding='utf-8')as fp:
fp.write(self.pubkey.save_pkcs1().decode('utf-8'))
with open(pri_key_path,'w',encoding='utf-8')as fp:
fp.write(self.pri_key.save_pkcs1().decode('utf-8'))
def load_keys(self,pubkey_path='pubkey.pem',pri_key_path='pri_key.pem',encode_format='utf-8'):
try:
fp=open(pubkey_path,'r',encoding=encode_format)
fp.readline()
fp1=open(pri_key_path,'r',encoding=encode_format)
fp1.readline()
except:
traceback.print_exc()
else:
fp.seek(0.0)
self.pubkey=rsa.PublicKey.load_pkcs1(fp.read().encode())
fp.close()
fp1.seek(0.0)
self.pri_key=rsa.PrivateKey.load_pkcs1(fp1.read().encode())
fp1.close()
return self.pubkey,self.pri_key
def rsa_str_sign(self,s_str,sign_type='SHA-1'):
if not isinstance(s_str,str):
return None
s_sign=rsa.sign(s_str.encode('utf-8'),self.pri_key,sign_type)
s_b64=base64.b64encode(s_sign).decode('utf-8')
#print('s_b64:',s_b64)
return s_b64
#s_str 是加密后转码base64 再decode为str类型;s为原str未签名串
def rsa_str_verify(self,s_str,s):
if not isinstance(s_str,str):
return None
s_b64=s_str.encode('utf-8')
s_unsign=base64.b64decode(s_b64)
try:
result=rsa.verify(s.encode('utf-8'),s_unsign,self.pubkey)
return result
except:
print('验签失败:')
traceback.print_exc()
if __name__=='__main__':
r=RsaSignUnsign()
pubkey,prikey=r.get_newkeys(1024)
#print('pubkey:',pubkey)
#print('prikey:',prikey)
r.write_keytofile('e:\\pubkey.pem','e:\\pri_key.pem')
r.load_keys('e:\\pubkey.pem','e:\\pri_key.pem')
print(r.get_keys())
print('*'*30)
s='nihaoma'
ss=r.rsa_str_sign(s)
print('ss:',ss)
#s='nihaoma1'
print('#'*20)
print(r.rsa_str_verify(ss,s))
二、主程序请求报文,对格式字符串进行拼串,签名操作
#coding=utf-8
'''
模拟一个http的json格式请求报文
'''
from rsa_str import *
import json
d_header={'typeCode':'onlineCoupon',
'version':1.0}
couponUseDateList=["20180228", "20180301", "20180302"]
d_body={'promotionPlanId':10001,
"faceValue": '%.2f'%5.00,
"couponUseDateList":couponUseDateList}
signature=''
d={'header':d_header,'body':d_body}
for i in sorted(d_header):
signature+=str(d_header[i])
for i in sorted(d_body):
if isinstance(d_body[i],list):
signature+=''.join(d_body[i])
else:
signature+=str(d_body[i])
print('signature:',signature)
rsasign=RsaSignUnsign()
rsasign.load_keys('e:\\pubkey.pem','e:\\pri_key.pem')
signature=rsasign.rsa_str_sign(signature)
d['signature']=signature
d_json=json.dumps(d)
print('d_json:',d_json)