支付寶官方解密文檔：https://docs.alipay.com/mini/introduce/aes

String response = "小程序前端提交的";//1. 獲取驗(yàn)簽和解密所需要的參數(shù) Map<String, String> openapiResult = JSON.parseObject(response,new TypeReference<Map<String, String>>() {}, Feature.OrderedField); String signType = StringUtil.defaultIfBlank(openapiResult.get("signType"), "RSA2"); String charset = StringUtil.defaultIfBlank(openapiResult.get("charset"), "UTF-8"); String encryptType = StringUtil.defaultIfBlank(openapiResult.get("encryptType"), "AES"); String sign = openapiResult.get("sign"); //如果密文的 boolean isDataEncrypted = !content.startsWith("{"); boolean signCheckPass = false;//2. 驗(yàn)簽 String signContent = content; String signVeriKey = "你的小程序?qū)?yīng)的支付寶公鑰（為擴(kuò)展考慮建議用appId+signType做密鑰存儲(chǔ)隔離）"; String encryptType = "你的小程序?qū)?yīng)的加解密密鑰（為擴(kuò)展考慮建議用appId+encryptType做密鑰存儲(chǔ)隔離）" //如果是加密的報(bào)文則需要在密文的前后添加雙引號(hào) if (isDataEncrypted) {signContent = "\"" + signContent + "\""; } try {signCheckPass = AlipaySignature.rsaCheck(signContent, sign, signVeriKey, charset, signType); } catch (AlipayApiException e) {//驗(yàn)簽異常, 日志 } if(!signCheckPass) {//驗(yàn)簽不通過(guò)（異?；蛘邎?bào)文被篡改），終止流程（不需要做解密）throw new Exception("驗(yàn)簽失敗"); }//3. 解密 String plainData = null; if (isDataEncrypted) {try {AlipayEncrypt.decryptContent(content, encryptType, decryptKey, charset);} catch (AlipayApiException e) {//加密異常, 日志throw new Exception("解密異常");} } else {plainData = content; }

　　雖然是參考代碼，但個(gè)人感覺(jué)太隨意了。做了一些簡(jiǎn)單的修改，編譯和邏輯都沒(méi)有問(wèn)題了。

/*** 敏感信息解密*/ @PostMapping(value = "/decryptor", produces = MediaType.APPLICATION_JSON_UTF8_VALUE) public RestResponse decryptor(@RequestBody String encryptContent) {RestResponse restResponse = new RestResponse();try {Map<String, String> openapiResult = JSON.parseObject(encryptContent,new TypeReference<Map<String, String>>() {},Feature.OrderedField);String signType = StringUtils.defaultIfBlank(openapiResult.get("sign_type"), "RSA2");String charset = StringUtils.defaultIfBlank(openapiResult.get("charset"), "UTF-8");String encryptType = StringUtils.defaultIfBlank(openapiResult.get("encrypt_type"), "AES");String sign = openapiResult.get("sign");String content = openapiResult.get("response");LOGGER.info(String.format("準(zhǔn)備驗(yàn)簽和解密，sign=[%s], signType=[%s], encryptType=[%s], encryptContent=[%s]", sign, signType, encryptType, encryptContent));//如果密文的boolean isDataEncrypted = !content.startsWith("{");boolean signCheckPass;//2. 驗(yàn)簽String signContent = content;//支付寶應(yīng)用公鑰String signVeriKey = ALIPAY_APPLET_PUBLIC_SECRET;//如果是加密的報(bào)文則需要在密文的前后添加雙引號(hào)if (isDataEncrypted) {signContent = "\"" + signContent + "\"";}try {signCheckPass = AlipaySignature.rsaCheck(signContent, sign, signVeriKey, charset, signType);} catch (AlipayApiException e) {//驗(yàn)簽異常, 日志LOGGER.error("驗(yàn)簽異常，encryptContent=" + encryptContent, e);restResponse.setRestStatus(RestStatus.FAIL_100021);return restResponse;}if (!signCheckPass) {//驗(yàn)簽不通過(guò)（異?；蛘邎?bào)文被篡改），終止流程（不需要做解密）LOGGER.error("驗(yàn)簽失敗，encryptContent=" + encryptContent);restResponse.setRestStatus(RestStatus.FAIL_100021);return restResponse;}//支付寶小程序AES秘鑰String encryptKey = ALIPAY_APPLET_AES_SECRET;//3. 解密 String plainData;if (isDataEncrypted) {try {plainData = AlipayEncrypt.decryptContent(content, encryptType, encryptKey, charset);} catch (AlipayApiException e) {//解密異常, 日志LOGGER.error("解密異常，encryptContent=" + encryptContent, e);restResponse.setRestStatus(RestStatus.FAIL_100021);return restResponse;}} else {plainData = content;}restResponse.setData(plainData);restResponse.setRestStatus(RestStatus.SUCCESS);} catch (Exception e) {LOGGER.error("驗(yàn)簽解密異常，encryptContent=" + encryptContent, e);restResponse.setRestStatus(RestStatus.FAIL_100021);}return restResponse; }

　　解密報(bào)文示例。

{"response":"+A9tOP5n2uUJaQRJOxLj6+rR0yooZWC/SQhcHDJ1BbLKkEA+hUr2ah3KOzL/+RwuyO4mH5ZSeFRpOrNPyTac/w==","sign":"V9OSmt5iTWr2tqpW/p6jjTcvpdiva8WxjnC7nvqyHg5eT181/61wcKysoTgLuNfFd2XbKvULHxi9mZDIh3OAR1PDIs0aOEhzimORbf9wBofoWfGKlq2iwWKeSSnxyS0W4maF0VrS0kNySsx5ta7eBGtSlGozOOR6R7oeygNdd43jOo33pZmUA0fo6DSHZH5lblrwqL4t0UcLSFLx1kqVNi28BsRQA5OxqkUp78PsxPGdps0CI9gQcAHfCKbKYk6F1bimw+R3k7ympm2esdEfl59Yym7lpz7gtOkGuNDjY3Y/urrYwGt7Kq/EX5BcIYA4DCS4nPkyb3wPRkH1VKBE+g=="} 或者

{"response": "hvDOnibG0DPcOFPNubK3DEfLQGL4=", "sign": "OIwk7zfZMp5GX78Ow==", "sign_type": "RSA2", "encrypt_type": "AES", "charset": "UTF-8" }

?

轉(zhuǎn)載于:https://www.cnblogs.com/hujunzheng/p/10184418.html

總結(jié)

以上是生活随笔為你收集整理的支付宝敏感信息解密的全部?jī)?nèi)容，希望文章能夠幫你解決所遇到的問(wèn)題。

如果覺(jué)得生活随笔網(wǎng)站內(nèi)容還不錯(cuò)，歡迎將生活随笔推薦給好友。