微信getPhoneNumber并后台java解密

微信小程序代码中调用：

wxml文件中增加：

 微信用户快速登陆

js文件中增加：

getPhoneNumber: function (e) {
    console.log(e.detail.errMsg)
    console.log(e.detail.iv)
    console.log(e.detail.encryptedData);
    if (e.detail.iv && e.detail.iv != 'undefined') {
      wx.checkSession({
        success: function () {
          //session 未过期，并且在本生命周期一直有效

          wx.request({
            url: app.globalData.API_URL + '/getPhoneNumer',
method: 'post',
header: {
      'content-type': 'application/x-www-form-urlencoded'
    },


            data:
{ iv: e.detail.iv, encryptedData: e.detail.encryptedData, uid: wx.getStorageSync('weixinUid')},
 success: function (res) { 
console.log(res.data);
            app.globalData.userInfo = res.data;
            
            wx.reLaunch({
              url: '../../pages/index/index'
            })
 }, fail: function () { wx.showToast({ title: '请求失败，请重试', }) } }) }, fail: function () { //登录态过期 wx.login({ success: res => { // 发送 res.code 到后台换取 openId, sessionKey, unionIdF console.log('-----app.js---------wx.login'); }) } }) } else { wx.showToast("请允许微信授权获取手机号码"); } },

后台服务代码：

1.mavent项目中pom文件中添加 

    org.bouncycastle
    bcprov-jdk15on
    ${bouncycastle.version}


    commons-codec
    commons-codec
    1.11

2.接收请求控制类中：

byte[] resultByte = AES.decrypt(Base64.decodeBase64(encryptedData),
        Base64.decodeBase64(key),
        Base64.decodeBase64(iv));
if (null != resultByte && resultByte.length > 0) {
    String userInfo = new String(resultByte, "UTF-8");

    JSONObject userJson = JSON.parseObject(userInfo);
    String phone = userJson.getString("phoneNumber");

    //解密成功
} else {
    logger.error("UserController login param code is null");
    result = SsoLogServiceImpl.RESULT.fail;
    return ResultUtil.error(-1, "解密报错");
}

3.AES.java文件

import org.bouncycastle.jce.provider.BouncyCastleProvider;

import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import java.security.*;


public class AES {
    public static boolean initialized = false;

    /**
     * AES解密
     * @param content 密文
     * @return
     * @throws InvalidAlgorithmParameterException
     * @throws NoSuchProviderException
     */
    public static byte[] decrypt(byte[] content, byte[] keyByte, byte[] ivByte) throws InvalidAlgorithmParameterException {
        initialize();
        try {
            Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
            Key sKeySpec = new SecretKeySpec(keyByte, "AES");

            cipher.init(Cipher.DECRYPT_MODE, sKeySpec, generateIV(ivByte));// 初始化
            byte[] result = cipher.doFinal(content);
            return result;
        } catch (NoSuchAlgorithmException e) {
            e.printStackTrace();
        } catch (NoSuchPaddingException e) {
            e.printStackTrace();
        } catch (InvalidKeyException e) {
            e.printStackTrace();
        } catch (IllegalBlockSizeException e) {
            e.printStackTrace();
        } catch (BadPaddingException e) {
            e.printStackTrace();
        } catch (NoSuchProviderException e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
        } catch (Exception e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
        }
        return null;
    }

    public static void initialize(){
        if (initialized) return;
        Security.addProvider(new BouncyCastleProvider());
        initialized = true;
    }
    //生成iv
    public static AlgorithmParameters generateIV(byte[] iv) throws Exception{
        AlgorithmParameters params = AlgorithmParameters.getInstance("AES");
        params.init(new IvParameterSpec(iv));
        return params;
    }


}

PS:用了一段时间，发现偶发性的点击“获取手机号码”返回出现解密报错，不做任何操作再次点击“获取手机号码”向后台请求解密就可以了，正在查找原因中