[Java知识库] RSA签名工具类（该工具类结合【外部接口使用第二章（调用第三方接口工具类）】）--- 外部接口使用第一章

开发: C++知识库 Java知识库 JavaScript Python PHP知识库人工智能区块链大数据移动开发嵌入式开发工具数据结构与算法开发测试游戏开发网络协议系统运维
教程: HTML教程 CSS教程 JavaScript教程 Go语言教程 JQuery教程 VUE教程 VUE3教程 Bootstrap教程 SQL数据库教程 C语言教程 C++教程 Java教程 Python教程 Python3教程 C#教程
数码: 电脑笔记本显卡显示器固态硬盘硬盘耳机手机 iphone vivo oppo 小米华为单反装机图拉丁

-> Java知识库 -> RSA签名工具类（该工具类结合【外部接口使用第二章（调用第三方接口工具类）】）--- 外部接口使用第一章 -> 正文阅读

[Java知识库]RSA签名工具类（该工具类结合【外部接口使用第二章（调用第三方接口工具类）】）--- 外部接口使用第一章

package com.sport.sportactivityserver.common.utils.schoolfitness;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.io.InputStream;
import java.io.InputStreamReader;
import java.io.Reader;
import java.io.StringWriter;
import java.io.Writer;
import java.security.KeyFactory;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.Signature;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
import java.util.Map;
import org.apache.commons.codec.binary.Base64;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import tk.mybatis.mapper.util.StringUtil;

/**

RSA签名工具类
Created by zdj on 2021/07/06.
*/
public class RSAUtil {
private static final Logger logger = LoggerFactory.getLogger(RSAUtil.class);
private static final int DEFAULT_BUFFER_SIZE = 8192;
private static final String SIGN_CHARSET = “UTF-8”;
private static final String SIGN_TYPE_RSA = “RSA”;
private static final String SIGN_SHA256RSA_ALGORITHMS = “SHA256WithRSA”;
/市局参数/
// 测试环境 - 公钥
private static final String PUBLIC_KEY = “”;
// 正式环境 - 公钥，私钥
//private static final String PUBLIC_KEY = “”;
// private static final String PRIVATE_KEY = “”;

/本地参数/
//正式和测试都是这个
private static final String PRIVATE_KEY = “”;
// private static final String PUBLIC_KEY = “”;

/**
- RSA2签名
- @param map 待签名数据和签名字段字符串
- @return 签名
- @throws Exception 异常上层处理
  */
  public static String rsaSign(Map<String, String> map) throws Exception {
  // 将请求的参数封装处理下变成&符号连接的字符串
  String content = getSignContent(map);
  
  // 实例化私钥对象，然后根据参数字符串和私钥生成签名
  PrivateKey priKey = getPrivateKeyFromPKCS8(new ByteArrayInputStream(PRIVATE_KEY.getBytes()));
  Signature signature = Signature.getInstance(SIGN_SHA256RSA_ALGORITHMS);
  signature.initSign(priKey);
  signature.update(content.getBytes(SIGN_CHARSET));
  return new String(Base64.encodeBase64(signature.sign()));
  }
/**
- RSA2验签
- @param map 待验签数据、签名信息和签名字段字符串
- @return 验签结果 true/false
- @throws Exception 异常上层处理
  */
  public static boolean rsaCheck(Map<String, String> map) throws Exception {
  // 将请求的参数封装处理下变成&符号连接的字符串
  String content = getSignContent(map);
  
  // 实例化公钥对象
  PublicKey pubKey = getPublicKeyFromX509(new ByteArrayInputStream(PUBLIC_KEY.getBytes()));
  Signature signature = Signature.getInstance(SIGN_SHA256RSA_ALGORITHMS);
  signature.initVerify(pubKey);
  signature.update(content.getBytes(SIGN_CHARSET));
  
  // 处理并返回验签结果
  String sign = map.get(“sign”);
  return signature.verify(Base64.decodeBase64(sign.getBytes()));
  }
/**
- 把参数按照ASCII码递增排序，如果遇到相同字符则按照第二个字符的键值ASCII码递增排序
- 将排序后的参数与其对应值，组合成“参数=参数值”的格式，并且把这些参数用&字符连接起来
- @param sortedParams 待签名数据和签名字段字符串
- @return 待签名字符串
  */
  private static String getSignContent(Map<String, String> sortedParams) {
  //appId,method,bizContent,生成签名所需的参数
  String[] sign_param = sortedParams.get(“sign_param”).split(",");
  List keys = new ArrayList<>();
  Collections.addAll(keys, sign_param);
  Collections.sort(keys);
  StringBuilder content = new StringBuilder();
  int index = 0;
  for (String key : keys) {
  String value = sortedParams.get(key);
  if (StringUtil.isNotEmpty(key) && StringUtil.isNotEmpty(value)) {
  content.append(index == 0 ? “” : “&”).append(key).append("=").append(value);
  index++;
  }
  }
  return content.toString();
  }
private static PrivateKey getPrivateKeyFromPKCS8(InputStream ins) throws Exception {
KeyFactory keyFactory = KeyFactory.getInstance(SIGN_TYPE_RSA);
byte[] encodedKey = readText(ins).getBytes();
encodedKey = Base64.decodeBase64(encodedKey);
return keyFactory.generatePrivate(new PKCS8EncodedKeySpec(encodedKey));
}

private static PublicKey getPublicKeyFromX509(InputStream ins) throws Exception {
KeyFactory keyFactory = KeyFactory.getInstance(SIGN_TYPE_RSA);
StringWriter writer = new StringWriter();
io(new InputStreamReader(ins), writer, -1);
byte[] encodedKey = writer.toString().getBytes();
encodedKey = Base64.decodeBase64(encodedKey);
return keyFactory.generatePublic(new X509EncodedKeySpec(encodedKey));
}

private static String readText(InputStream ins) throws IOException {
Reader reader = new InputStreamReader(ins);
StringWriter writer = new StringWriter();
io(reader, writer, -1);
return writer.toString();
}

private static void io(Reader in, Writer out, int bufferSize) throws IOException {
if (bufferSize == -1) {
bufferSize = DEFAULT_BUFFER_SIZE >> 1;
}
char[] buffer = new char[bufferSize];
int amount;
while ((amount = in.read(buffer)) >= 0) {
out.write(buffer, 0, amount);
}
}
}