| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124 |
- package com.happy.common.http;
- import org.apache.commons.codec.binary.Hex;
- import org.apache.commons.lang3.Validate;
- import java.security.GeneralSecurityException;
- import java.security.MessageDigest;
- import java.security.SecureRandom;
- import java.util.Random;
- public class SHA {
- private static SecureRandom random = new SecureRandom();
- /**
- * 加密遵循RFC2671规范 将相关参数加密生成一个MD5字符串,并返回
- */
- public static String http_da_calc_HA1(String username, String realm, String password,
- String nonce, String nc, String cnonce, String qop,
- String method, String uri, String algorithm) {
- String HA1, HA2;
- if ("SHA-256".equals(algorithm)) {
- HA1 = HA1_MD5(username, realm, password);
- } else {
- HA1 = HA1_MD5_sess(username, realm, password, nonce, cnonce);
- }
- byte[] sha256Byte = sha256(HA1.getBytes());
- HA1 = new String(Hex.encodeHex(sha256Byte));
- sha256Byte = sha256(HA2(method, uri).getBytes());
- HA2 = new String(Hex.encodeHex(sha256Byte));
- String original = HA1 + ":" + nonce + ":" + nc + ":" + cnonce + ":" + qop + ":" + HA2;
- sha256Byte = sha256(original.getBytes());
- return new String(Hex.encodeHex(sha256Byte));
- }
- /**
- * algorithm值为MD5时规则
- */
- private static String HA1_MD5(String username, String realm, String password) {
- String s1 = username + ":" + realm + ":" + password;
- return s1;
- }
- /**
- * algorithm值为MD5-sess时规则
- */
- private static String HA1_MD5_sess(String username, String realm, String password, String nonce, String cnonce) {
- // MD5(username:realm:password):nonce:cnonce
- String s = HA1_MD5(username, realm, password);
- byte[] md5Byte = sha256(s.getBytes());
- String smd5 = new String(Hex.encodeHex(md5Byte));
- return smd5 + ":" + nonce + ":" + cnonce;
- }
- private static String HA2(String method, String uri) {
- String s2 = method + ":" + uri;
- return s2;
- }
- /**
- * 对输入字符串进行md5散列.
- */
- public static byte[] sha256(byte[] input) {
- return digest(input, "sha-256", null, 1);
- }
- /**
- * 对字符串进行散列, 支持md5与sha1算法.
- */
- private static byte[] digest(byte[] input, String algorithm, byte[] salt, int iterations) {
- try {
- MessageDigest digest = MessageDigest.getInstance(algorithm);
- if (salt != null) {
- digest.update(salt);
- }
- byte[] result = digest.digest(input);
- for (int i = 1; i < iterations; i++) {
- digest.reset();
- result = digest.digest(result);
- }
- return result;
- } catch (GeneralSecurityException e) {
- throw new RuntimeException(e);
- }
- }
- /**
- * 随机生成numBytes长度数组
- * @param numBytes
- * @return
- */
- public static byte[] generateSalt(int numBytes) {
- Validate.isTrue(numBytes > 0, "numBytes argument must be a positive integer (1 or larger)", (long) numBytes);
- byte[] bytes = new byte[numBytes];
- random.nextBytes(bytes);
- return bytes;
- }
- @Deprecated
- public static String generateSalt2(int length) {
- String val = "";
- Random random = new Random();
- //参数length,表示生成几位随机数
- for (int i = 0; i < length; i++) {
- String charOrNum = random.nextInt(2) % 2 == 0 ? "char" : "num";
- //输出字母还是数字
- if ("char".equalsIgnoreCase(charOrNum)) {
- //输出是大写字母还是小写字母
- int temp = random.nextInt(2) % 2 == 0 ? 65 : 97;
- val += (char) (random.nextInt(26) + temp);
- } else if ("num".equalsIgnoreCase(charOrNum)) {
- val += String.valueOf(random.nextInt(10));
- }
- }
- return val.toLowerCase();
- }
- public static void main(String[] args) {
- String response = http_da_calc_HA1("admin","device","Chuanghai-2021",
- "58cacbc8f220d14fae8c8d8800c00fc4d424936c49d229872e86e7dbcd9b9a6e","00000001",
- "247fe9fd623c1c42","auth","POST","/API/Web/Login","SHA-256");
- System.out.println(response);
- }
- }
|
