通过spring对hibernate/ibatis的配置文件加密

由于本人优盘丢了,积累的东西都没了 #。#! 所以懒人也得写博客记录些东西
[color=blue]本文参考过网上的例子,具体出处已经不详...[/color]

对信息的加密是用的[color=red]DES[/color](具体加密方法的选用,可自行选择)


public class DESUtil {
public static final String KEY_STRING = "farawayfrom";//生成密钥的字符串
static Key key;

/**
* 根据参数生成KEY
*
* @param strKey
*/
public static void getKey(String strKey) {
try {
KeyGenerator _generator = KeyGenerator.getInstance("DES");
_generator.init(new SecureRandom(strKey.getBytes()));
key = _generator.generateKey();
_generator = null;
} catch (Exception e) {
e.printStackTrace();
}
}

/**
* 加密String明文输入,String密文输出
*
* @param strMing
* @return
*/
public static String getEncString(String strMing) {
DESUtil.getKey(KEY_STRING);// 生成密匙
byte[] byteMi = null;
byte[] byteMing = null;
String strMi = "";
BASE64Encoder base64en = new BASE64Encoder();
try {
byteMing = strMing.getBytes("UTF8");
byteMi = getEncCode(byteMing);
strMi = base64en.encode(byteMi);
} catch (Exception e) {
e.printStackTrace();
} finally {
base64en = null;
byteMing = null;
byteMi = null;
}
return strMi;
}

/**
* 解密 以String密文输入,String明文输出
*
* @param strMi
* @return
*/
public static String getDesString(String strMi) {
DESUtil.getKey(KEY_STRING);// 生成密匙
BASE64Decoder base64De = new BASE64Decoder();
byte[] byteMing = null;
byte[] byteMi = null;
String strMing = "";
try {
byteMi = base64De.decodeBuffer(strMi);
byteMing = getDesCode(byteMi);
strMing = new String(byteMing, "UTF8");
} catch (Exception e) {
e.printStackTrace();
} finally {
base64De = null;
byteMing = null;
byteMi = null;
}
return strMing;
}

/**
* 加密以byte[]明文输入,byte[]密文输出
*
* @param byteS
* @return
*/
private static byte[] getEncCode(byte[] byteS) {
byte[] byteFina = null;
Cipher cipher;
try {
cipher = Cipher.getInstance("DES");
cipher.init(Cipher.ENCRYPT_MODE, key);
byteFina = cipher.doFinal(byteS);
} catch (Exception e) {
e.printStackTrace();
} finally {
cipher = null;
}
return byteFina;
}

/**
* 解密以byte[]密文输入,以byte[]明文输出
*
* @param byteD
* @return
*/
private static byte[] getDesCode(byte[] byteD) {
Cipher cipher;
byte[] byteFina = null;
try {
cipher = Cipher.getInstance("DES");
cipher.init(Cipher.DECRYPT_MODE, key);
byteFina = cipher.doFinal(byteD);
} catch (Exception e) {
e.printStackTrace();
} finally {
cipher = null;
}
return byteFina;

}

public static void main(String[] args) {

String strEnc = DESUtil.getEncString("yanfa");// 加密字符串,返回String的密文
System.out.println(strEnc);

String strDes = DESUtil.getDesString("kSElf8soueY=");// 把String 类型的密文解密
System.out.println(strDes);
}

}

这里的密钥字符串已经在类中写死,如果觉得不安全可以自己将密钥用MD5加密后写到文件中使用。


spring配置文件部分内容如下:(注意红色的地方正是解密的类)


[color=red]class="com.dt.util.MyConfigurer"[/color]>


classpath:conf/jdbc.properties






解密类如下:

public class MyConfigurer extends PropertyPlaceholderConfigurer

{

@Override
protected void processProperties(
ConfigurableListableBeanFactory beanFactory, Properties props)
throws BeansException {

System.out.println("MyConfigurer!");
String UserName = props.getProperty("jdbc.UserName");
if (UserName != null ) {
props.setProperty("jdbc.UserName", DESUtil.getDesString(UserName));
}
String password = props.getProperty("jdbc.PassWord");
if (password != null ) {
props.setProperty("jdbc.PassWord", DESUtil.getDesString(password));
}
super.processProperties(beanFactory, props);

}
}

以上方法是对数据库用户名和密码进行解密。

记性不好,还是写在不容易丢的地方吧。呵呵··
当然可能还有其他更好的方法,仅供参考

你可能感兴趣的:(java)