统一认证加密及签名参数校验
Posted hnhycnlc888
tags:
篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了统一认证加密及签名参数校验相关的知识,希望对你有一定的参考价值。
1 、openssl
//aes加密 $key = ‘7dD11GshBatrxKdt‘; $input = ‘13579265781‘; //aes解密 $encrypted_value = openssl_encrypt($input, ‘AES-128-ECB‘, $key, 1); echo openssl_decrypt( $encrypted_value , "AES-128-ECB" , $key , 1); exit;
//aes加密
$key = ‘EipM7zsDJ32mR0NK‘;
$input = ‘13928892857‘;
$key = ‘EipM7zsDJ32mR0NK‘;
$input = ‘13928892857‘;
echo bin2hex(openssl_encrypt($input, ‘AES-128-ECB‘, md5($key, true), OPENSSL_RAW_DATA));
exit;
exit;
说明:OPENSSL_RAW_DATA表示加密后输出原始的二进制数据,类似 Java种的byte[],bin2hex函数是将二进制数据转成16进制编码数据,md5(xxx,true)表示16位小写。
2、mcrypt
<?php class Security { public static function encrypt($input, $key) { $size = mcrypt_get_block_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_ECB); $input = Security::pkcs5_pad($input, $size); $td = mcrypt_module_open(MCRYPT_RIJNDAEL_128, ‘‘, MCRYPT_MODE_ECB, ‘‘); $iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($td), MCRYPT_RAND); mcrypt_generic_init($td, $key, $iv); $data = mcrypt_generic($td, $input); mcrypt_generic_deinit($td); mcrypt_module_close($td); $data = base64_encode($data); return $data; } private static function pkcs5_pad ($text, $blocksize) { $pad = $blocksize - (strlen($text) % $blocksize); return $text . str_repeat(chr($pad), $pad); } public static function decrypt($sStr, $sKey) { $decrypted= mcrypt_decrypt( MCRYPT_RIJNDAEL_128, $sKey, base64_decode($sStr), MCRYPT_MODE_ECB ); $dec_s = strlen($decrypted); $padding = ord($decrypted[$dec_s-1]); $decrypted = substr($decrypted, 0, -$padding); return $decrypted; } } $key = "1234567891234567"; $data = "example"; $value = Security::encrypt($data , md5($key,true) ); echo $value." "; echo Security::decrypt($value, md5($key,true));
3、签名的算法
function getMac($request) { //字典排序 ksort($request[‘header‘]); ksort($request[‘body‘]); ksort($request); //md5 16位 $string = md5(json_encode($request), true); //HmacSHA256 加密 $encrty = hash_hmac(‘sha256‘, $string, md5(‘EipM7zsDJ32mR0NK‘, true), true); //转成16进制 return bin2hex($encrty); }
以上是关于统一认证加密及签名参数校验的主要内容,如果未能解决你的问题,请参考以下文章
Express实战 - 应用案例- realworld-API - 路由设计 - mongoose - 数据验证 - 密码加密 - 登录接口 - 身份认证 - token - 增删改查API(代码片段