Package org.nutz.token

Source Code of org.nutz.token.SafeSetup

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
package org.nutz.token;

import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
import java.io.ObjectInputStream;
import java.io.ObjectOutputStream;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.SecureRandom;

import org.nutz.dao.Dao;
import org.nutz.dao.entity.annotation.Table;
import org.nutz.lang.Lang;
import org.nutz.lang.random.R;
import org.nutz.mvc.NutConfig;
import org.nutz.mvc.Setup;
import org.nutz.repo.Base64;
import org.nutz.resource.Scans;

public class SafeSetup implements Setup {
 
  public void init(NutConfig config) {
    Dao dao = config.getIoc().get(Dao.class);
    for (Class<?> klass : Scans.me().scanPackage("org.nutz.safe.bean")) {
      if (klass.getAnnotation(Table.class) != null)
        dao.create(klass, false);
    }
   
    //初始化Enc
    //--------------------------------------------------------------
   
    //获取md5key
    SystemConfig md5key = dao.fetch(SystemConfig.class, "enc.md5key");
    if (md5key == null) {
      md5key = new SystemConfig();
      md5key.setName("enc.md5key");
      md5key.setData(R.sg(16).next());
    }
   
    //获取系统的公钥
    SystemConfig sysPubKey = dao.fetch(SystemConfig.class, "enc.sys.pubkey");
    SystemConfig sysPriKey = dao.fetch(SystemConfig.class, "enc.sys.prikey");
    PublicKey publicKey = null;
    PrivateKey privateKey = null;
    if (sysPubKey == null) {
      try {
        KeyPairGenerator keygen = KeyPairGenerator.getInstance("RSA");
        SecureRandom random = new SecureRandom();
        keygen.initialize(1024, random);
        KeyPair kp = keygen.generateKeyPair();
        publicKey = kp.getPublic();
        privateKey = kp.getPrivate();
       
        sysPubKey = new SystemConfig();
        sysPubKey.setName("enc.sys.pubkey");
        sysPubKey.setData(Base64.encodeToString(obj2bytes(publicKey), false));
        dao.insert(sysPubKey);
       
        sysPriKey = new SystemConfig();
        sysPriKey.setName("enc.sys.prikey");
        sysPriKey.setData(Base64.encodeToString(obj2bytes(privateKey), false));
        dao.insert(sysPriKey);
      } catch (Exception e) {
        throw Lang.wrapThrow(e);
      }
    } else {
      try {
        publicKey = (PublicKey) bytes2obj(sysPubKey.getData().getBytes());
        privateKey = (PrivateKey) bytes2obj(sysPriKey.getData().getBytes());
      } catch (Exception e) {
        throw Lang.wrapThrow(e);
      }
    }
   
    Enc.initSys(md5key.getData(), publicKey, privateKey);
  }
 
  public void destroy(NutConfig config) {
  }
 
  public static byte[] obj2bytes(Object obj) throws Exception {
    ByteArrayOutputStream bao = new ByteArrayOutputStream();
    ObjectOutputStream oos = new ObjectOutputStream(bao);
    oos.writeObject(obj);
    oos.flush();
    oos.close();
    return bao.toByteArray();
  }
 
  public static Object bytes2obj(byte[] data) throws Exception {
    ByteArrayInputStream bai = new ByteArrayInputStream(data);
    ObjectInputStream ois = new ObjectInputStream(bai);
    Object obj = ois.readObject();
    ois.close();
    return obj;
  }
}
TOP

Related Classes of org.nutz.token.SafeSetup

  • org.nutz.dao.Dao
  • java.security.PublicKey
  • java.io.ObjectOutputStream
  • java.io.ObjectInputStream
  • java.security.PrivateKey
  • java.io.ByteArrayOutputStream
  • java.io.ByteArrayInputStream
  • java.security.KeyPair
  • java.security.SecureRandom
  • java.security.KeyPairGenerator
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.