java验证苹果_苹果登录 Sign in with Apple 服务端校验

APP端苹果登录java后端校验

主要校验苹果授权登录token 是否正确

主要方法

public RSAPublicKeySpec build(final String n, final String e) {

final BigInteger modulus = new BigInteger(1, Base64.decodeBase64(n));

final BigInteger publicExponent = new BigInteger(1, Base64.decodeBase64(e));

return new RSAPublicKeySpec(modulus, publicExponent);

}

public int verify(final PublicKey key, final String jwt, final String audience, final String subject) {

final JwtParser jwtParser = Jwts.parser().setSigningKey(key);

jwtParser.requireIssuer("https://appleid.apple.com");

jwtParser.requireAudience(audience);

jwtParser.requireSubject(subject);

try {

final Jws claim = jwtParser.parseClaimsJws(jwt);

if (claim != null && claim.getBody().containsKey("auth_time")) {

claims = claim;

log.info("[Apple登录解密结果]header:{},body:{},signature:{}", claim.getHeader(), claim.getBody(),

claim.getSignature());

return 1;

}

return 0;

} catch (final ExpiredJwtException e) {

log.error("apple identityToken expired");

return -1;

} catch (final Exception e) {

log.error("apple identityToken illegal");

return -2;

}

}

/**

* 从hex string生成公钥

*

* @param stringN

* @param stringE

* @return 构造好的公钥

* @throws NoSuchAlgorithmException

* @throws InvalidKeySpecException

*/

public static PublicKey createPublicKey(final String stringN, final String stringE)

throws NoSuchAlgorithmException, InvalidKeySpecException {

try {

// BigInteger N = new BigInteger(stringN, 16); // hex base

// BigInteger E = new BigInteger(stringE, 16); // hex base

final BigInteger modulus = new BigInteger(1, Base64.decodeBase64(stringN));

final BigInteger publicExponent = new BigInteger(1, Base64.decodeBase64(stringE));

final RSAPublicKeySpec spec = new RSAPublicKeySpec(modulus, publicExponent);

final KeyFactory kf = KeyFactory.getInstance("RSA");

return kf.generatePublic(spec);

} catch (final Exception e) {

e.printStackTrace();

}

return null;

}

需要引用到的pom包

io.jsonwebtoken

jjwt

0.9.1

com.alibaba

fastjson

1.2.30

org.apache.httpcomponents

httpclient

com.javabase64

javabase64

1.3.1

commons-lang

commons-lang

2.6