laravel 5.3中自定义加密服务的方案详解
前言
本文介绍的是laravel 5.3中自定义加密服务的方案,利用laravel的服务容器,实现自定义加密服务注册(示例是支持长字符串的RSA加密),下面来看看详细的介绍:
创建加密解密服务类
文件地址 /app/Service/Common/CryptService.php 代码如下
下面这个是个人写的支持长字符串的RSA加密类作为示例,自定义加密的话只需更改这个文件的代码就好,其它操作只是为了实现依赖注入。
<?php
namespace App\Service\Common;
class CryptService
{
public $config,$keypath, $prikey_path, $pubkey_path, $prikey, $pubkey , $private_key_size;
public function select($select = 'rsa_api')
{
$config = config('crypt');
if (array_key_exists($select, $config)) {
$this->config = $config[$select];
$this->private_key_size = $this->config['openssl_config']['private_key_bits'];
} else {
return false;
}
$this->keypath = dirname(dirname(dirname(__DIR__))) . $this->config['path'];
if(!file_exists($this->keypath)){
mkdir($this->keypath,"0777",true);
}
$this->prikey_path = $this->keypath . $this->config['private_key_file_name'];
$this->pubkey_path = $this->keypath . $this->config['public_key_file_name'];
if (file_exists($this->prikey_path))
$this->prikey = file_get_contents($this->prikey_path);
if (file_exists($this->pubkey_path))
$this->pubkey = file_get_contents($this->pubkey_path);
return $this;
}
public function makeKey()
{
$res = openssl_pkey_new($this->config['openssl_config']);
openssl_pkey_export($res, $this->prikey);
file_put_contents($this->prikey_path, $this->prikey);
$pubkey = openssl_pkey_get_details($res);
$this->pubkey = $pubkey['key'];
file_put_contents($this->pubkey_path, $this->pubkey);
return $test = ['prikey' => $this->prikey, 'pubkey' => $this->pubkey];
}
public function encryptPrivate($data){
$crypt = $this->encrypt_split($data);
$crypted = '';
foreach ($crypt as $k=>$c){
if($k!=0) $crypted.="@";
$crypted.=base64_encode($this->doEncryptPrivate($c));
}
return $crypted;
}
public function encryptPublic($data){
$crypt = $this->encrypt_split($data);
$crypted = '';
foreach ($crypt as $k=>$c){
if($k!=0) $crypted.="@";
$crypted.=base64_encode($this->doEncryptPublic($c));
}
return $crypted;
}
public function decryptPublic($data){
$decrypt = explode('@',$data);
$decrypted = "";
foreach ($decrypt as $k=>$d){
$decrypted .= $this->doDecryptPublic(base64_decode($d));
}
return $decrypted;
}
public function decryptPrivate($data){
$decrypt = explode('@',$data);
$decrypted = "";
foreach ($decrypt as $k=>$d){
$decrypted .= $this->doDecryptPrivate(base64_decode($d));
}
return $decrypted;
}
private function encrypt_split($data){
$crypt=[];$index=0;
for($i=0; $i<strlen($data); $i+=117){
$src = substr($data, $i, 117);
$crypt[$index] = $src;
$index++;
}
return $crypt;
}
private function doEncryptPrivate($data)
{
$rs = '';
if (@openssl_private_encrypt($data, $rs, $this->prikey) === FALSE) {
return NULL;
}
return $rs;
}
private function doDecryptPrivate($data)
{
$rs = '';
if (@openssl_private_decrypt($data, $rs, $this->prikey) === FALSE) {
return null;
}
return $rs;
}
private function doEncryptPublic($data){
$rs = '';
if (@openssl_public_encrypt($data, $rs, $this->pubkey) === FALSE) {
return NULL;
}
return $rs;
}
private function doDecryptPublic($data)
{
$rs = '';
if (@openssl_public_decrypt($data, $rs, $this->pubkey) === FALSE) {
return null;
}
return $rs;
}
}
创建门面facades
文件地址 /app/Facades/CryptFacades.php 代码如下:
<?php
namespace App\Facades;
use \Illuminate\Support\Facades\Facade;
class CryptFacades extends Facade{
public static function getFacadeAccessor()
{
return 'MyCrypt';
}
}
注册服务
创建文件 /app/Providers/MyCryptServiceProvider.php 代码如下:
其实也可以在AppServiceProvider中注册,就不用另外建个MyCryptServiceProvider.php文件了
而且在/config/app.php中一般也已经有了AppServiceProvider的声明
<?php
namespace App\Providers;
use App\Service\Common\CryptService;
use Illuminate\Support\ServiceProvider;
class MyCryptServiceProvider extends ServiceProvider
{
/**
* Bootstrap the application services.
*
* @return void
*/
public function boot()
{
//
}
/**
* Register the application services.
*
* @return void
*/
public function register()
{
\App::bind('MyCrypt',CryptService::class);
}
}
在配置中声明
文件地址 /config/app.php 在providershe和aliases中添加
'providers' => [ \App\Providers\MyCryptServiceProvider::class, ], 'aliases' => [ 'MyCrypt' => \App\Facades\CryptFacades::class, ]
编写自定义加密解密服务的配置文件
/config/crypt.php 因为我写的CryptService有用到配置文件,所以需要再添加个配置文件。在实际项目中,可以根据需要自行设置配置文件和加密服务类。
<?php //基于laravel根目录,分隔符最好是用 DIRECTORY_SEPARATOR 常量代替 return [ 'rsa_api' => [ 'path'=>DIRECTORY_SEPARATOR.'storage'.DIRECTORY_SEPARATOR.'rsakey'.DIRECTORY_SEPARATOR, 'private_key_file_name'=>'private_key.pem', 'public_key_file_name' =>'public_key.pem', 'openssl_config'=>[ "digest_alg" => "sha512", "private_key_bits" => 1024, "private_key_type" => OPENSSL_KEYTYPE_RSA, ] ], 'rsa_data'=>[ 'path'=>DIRECTORY_SEPARATOR.'storage'.DIRECTORY_SEPARATOR.'rsakey'.DIRECTORY_SEPARATOR, 'private_key_file_name'=>'private.pem', 'public_key_file_name' =>'public.pem', 'openssl_config'=>[ "digest_alg" => "sha512", "private_key_bits" => 1024, "private_key_type" => OPENSSL_KEYTYPE_RSA, ] ] ];
在Controller中使用的示例
1、artisan创建Controller文件
php artisan make:controller IndexController
2、编辑IndexController
<?php
namespace App\Http\Controllers;
use Illuminate\Http\Request;
use MyCrypt;
class IndexController extends Controller{
public function test(){
$crypt = MyCrypt::select('rsa_api');
$crypt->makeKey();
$short = "abcd";
$long = "
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa";
$req['short'] = $short;
$req['short_private_encrypt'] = $crypt->encryptPrivate($short);
$req['short_public_decrypt'] = $crypt->decryptPublic($req['short_private_encrypt']);
$req['long'] = $long;
$req['long_private_encrypt'] = $crypt->encryptPrivate($long);
$req['long_public_decrypt'] = $crypt->decryptPublic($req['long_private_encrypt']);
dump($req);
//dd($req);
}
}
3、在/routes/web.php添加路由
Route::get('/test', 'IndexController@test');
4、浏览器访问验证结果
总结
以上就是这篇文章的全部内容了,希望本文的内容对大家的学习或者工作能带来一定的帮助,如果有疑问大家可以留言交流,谢谢大家对小牛知识库的支持。
-
计划 字符串 - 自定义计划需要使用选项注册。 privileges Object (可选) standard Boolean (可选) -默认为false secure Boolean (可选) - 默认为false bypassCSP Boolean (可选) - 默认为false allowServiceWorkers Boolean (可选) - 默认为false supportFetch
-
本文向大家介绍spring boot微服务自定义starter原理详解,包括了spring boot微服务自定义starter原理详解的使用技巧和注意事项,需要的朋友参考一下 这篇文章主要介绍了spring boot微服务自定义starter原理详解,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友可以参考下 使用spring boot开发微服务后,工程的数量
-
注意:用户界面已经在 Dreamweaver CC 和更高版本中做了简化。因此,您可能在 Dreamweaver CC 和更高版本中找不到本文中描述的一些选项。有关详细信息,请参阅此文章。 关于自定义服务器行为 Dreamweaver 附带有一组内置的服务器行为,从而让您可以轻松地向站点添加动态功能。您可以扩展 Dreamweaver 功能,方式是通过创建满足您的开发需求的服务器行为,或者通过从
-
本文向大家介绍MySQL 整表加密解决方案 keyring_file详解,包括了MySQL 整表加密解决方案 keyring_file详解的使用技巧和注意事项,需要的朋友参考一下 说明 MySql社区版从5.7.11开始支持基于表的数据加密方案,模块名为keyring_file,支持加密整张表。这种是加密方式其实是基于文件加密的,一旦mysqld读取key启动后,将会解密整张表的数据,在mysql
-
本文向大家介绍IONIC自定义subheader的最佳解决方案,包括了IONIC自定义subheader的最佳解决方案的使用技巧和注意事项,需要的朋友参考一下 IONIC subheader是我们常用的一个css 属性,但是这个subheader的高度是固定的,当然也是可以改变的,但是如果改了subheader的告诉,还要更改content的top值,稍微有些麻烦,如果是动态告诉的subheade
-
本文向大家介绍Android中自定义一个View的方法详解,包括了Android中自定义一个View的方法详解的使用技巧和注意事项,需要的朋友参考一下 本文实例讲述了Android中自定义一个View的方法。分享给大家供大家参考,具体如下: Android中自定义View的实现比较简单,无非就是继承父类,然后重载方法,即便如此,在实际编码中难免会遇到一些坑,我把自己遇到的一些问题和解决方法总结一下