java產生的密鑰主要是字串;而pem格式密鑰是以64位為一行,並且帶有如下頭和尾的檔案格式,然後php再去取得相對應pem格式字串。
pem格式密鑰
-----BEGIN PUBLIC KEY-----//64chars一行(多行)-----END PUBLIC KEY----------BEGIN RSA PRIVATE KEY-----//64chars一行(多行)-----END RSA PRIVATE KEY-----
1.java密鑰轉為pem格式的php代碼
/** * 將字串格式公私密金鑰格式化為pem格式公私密金鑰 * @param $secret_key * @param $type * @return string */public static function format_secret_key($secret_key, $type){ //64個英文字元後接分行符號"\n",最後再接分行符號"\n" $key = (wordwrap($secret_key, 64, "\n", true))."\n"; //添加pem格式頭和尾 if ($type == 'pub') { $pem_key = "-----BEGIN PUBLIC KEY-----\n" . $key . "-----END PUBLIC KEY-----\n"; }else if ($type == 'pri') { $pem_key = "-----BEGIN RSA PRIVATE KEY-----\n" . $key . "-----END RSA PRIVATE KEY-----\n"; }else{ echo('公私密金鑰類型非法'); exit(); } return $pem_key;}
2.加簽
/** * RSA加簽 * @param $paramStr * @param $priKey * @return string */public static function sign($paramStr, $priKey){ $sign = ''; //將字串格式公私密金鑰轉為pem格式公私密金鑰 $priKeyPem = SignUtil::format_secret_key($priKey, 'pri'); //轉換為openssl密鑰,必須是沒有經過pkcs8轉換的私密金鑰 $res = openssl_get_privatekey($priKeyPem); //調用openssl內建簽名方法,產生簽名$sign openssl_sign($paramStr, $sign, $res); //釋放資源 openssl_free_key($res); //base64編碼簽名 $signBase64 = base64_encode($sign); //url編碼簽名 $sign = urlencode($signBase64); return $sign;}
3.驗簽
/** * RSA驗簽 * @param $paramStr * @param $sign * @param $pubKey * @return bool */public static function verify($paramStr, $sign, $pubKey) { //將字串格式公私密金鑰轉為pem格式公私密金鑰 $pubKeyPem = SignUtil::format_secret_key($pubKey, 'pub'); //轉換為openssl密鑰,必須是沒有經過pkcs8轉換的公開金鑰 $res = openssl_get_publickey($pubKeyPem); //url解碼簽名 $signUrl = urldecode($sign); //base64解碼簽名 $signBase64 = base64_decode($signUrl); //調用openssl內建方法驗簽,返回bool值 $result = (bool)openssl_verify($paramStr, $signBase64, $res); //釋放資源 openssl_free_key($res); //返回資源是否成功 return $result;}
以上這篇php對接java現實加簽驗簽的執行個體就是小編分享給大家的全部內容了,希望能給大家一個參考,也希望大家多多支援指令碼之家。
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
