java - Spring 4 Encryptors vs cryptojs -


i processing encryption using spring 4 encryptors class way:

string salt = keygenerators.string().generatekey(); textencryptor textencryptor = encryptors.text("my_secret_key", salt); textencryptor.encrypt(json);

in client javascript trying decrypt using cryptojs

var uncrypted = cryptojs.aes.decrypt(serverencrypted, "my_secret_key"); $("#encrypted-data").val(uncrypted);

i guessing need revert hex encoding part, don't understand needs done.

i tried parsing before decrypting, nothing out of it.

cryptojs.enc.hex.parse(serverencrypted)

the spring documentation says text method encrypt in hex value in "standard" encryption method , 256-bit aes using pkcs #5's pbkdf2

[search progress]

this how spring creates key:

pbekeyspec keyspec = new pbekeyspec(password.tochararray(), salt, 1024, 256); secretkey secretkey = newsecretkey("pbkdf2withhmacsha1", keyspec); secretkeyspec secretkey = new secretkeyspec(secretkey.getencoded(), "aes");

and crypting:

cipher cipher = cipher.getinstance("aes/cbc/pkcs5padding"); cipher.init(cipher.encrypt_mode, secretkey, new ivparameterspec(iv));

iv 8 bytes secured random array , prepended encrypted data.

after research, find out solution, how combine spring 4 encryptors , cryptojs. spring use in encryptors 256-bit aes using pkcs #5's pbkdf2 provided in documentation - spring crypto docs iv size equals 16 bytes. info crucial when creating code in cryptojs. thing remember use same salt , iv during whole process of encryption/decryption one message. armed info can start coding (in example encrypt message in cryptojs , decrypt in spring): cryptojs

const keysize = 256; const ivsize = 128; const iterations = 1024;  function encrypt(msg, pass) {     const salt = cryptojs.lib.wordarray.random(128 / 8);      const key = cryptojs.pbkdf2(pass, salt, {         keysize: keysize / 32,         iterations: iterations     });      const iv = cryptojs.lib.wordarray.random(ivsize / 8);      const encrypted = cryptojs.aes.encrypt(msg, key, {         iv: iv,         padding: cryptojs.pad.pkcs7,         mode: cryptojs.mode.cbc      });      // salt, iv hex 32 in length     // append them ciphertext use  in decryption     return salt.tostring() + iv.tostring() + encrypted.ciphertext.tostring(); }

as can see result of encryption concatenation of salt + iv + encryptedmessage. important in spring code found key created 256 length , in 1024 iterations:

pbekeyspec keyspec = new pbekeyspec(password.tochararray(), hex.decode(salt), 1024, 256);

now prepared result can take our spring code , decrypt:

private static string decrypt(string encrypteddata, string keystr) {         final string salt = encrypteddata.substring(0, 32);         final string encryptedpart = encrypteddata.substring(32);         final textencryptor textencryptor = encryptors.text(keystr, salt);         return textencryptor.decrypt(encryptedpart); }

spring aes encryptor cut part iv , use decryption process itself. of course has hex encoded, that's how spring textencrytpors works.

the reverse procedure (encrypt in spring , decrypt in cryptojs) pretty same. in cryptojs have extract salt , iv:

const keysize = 256;  function decrypt (encryptedmessage, pass) {   var salt = cryptojs.enc.hex.parse(encryptedmessage.substr(0, 32));   var iv = cryptojs.enc.hex.parse(encryptedmessage.substr(32, 32))   var encrypted = encryptedmessage.substring(64);    var key = cryptojs.pbkdf2(pass, salt, {       keysize: keysize / 32,       iterations: iterations     });    var decrypted = cryptojs.aes.decrypt(encrypted, key, {      iv: iv,      padding: cryptojs.pad.pkcs7,     mode: cryptojs.mode.cbc    })   return decrypted; }

i hope :)

cheers!


Comments

Post a Comment

Popular posts from this blog

java - Spring Data JPA: Why findOne(id) executing delete query internally? -

i have 1 application using @manytomany annotation link 2 different entities 1 parent entity. not sure if have implemented properly. when execute .findone() on parent entity's repository find it, @ first fetch data along executing delete queries internally delete record mapping table (a table jpa creates after adding @manytomany annotation.). following generated sql queries , code snippet: java class @entity @table(name = "inventory") public class inventory { @id long id; // many other properties @manytomany(fetch=fetchtype.lazy) private list<stream> streams; @manytomany(fetch=fetchtype.lazy) private list<subject> subjects; } there no other annotation i've put in stream , subject entity class link inventory class. when run app, create following tables: inventory stream subject inventory_stream inventory_subject (inventory_stream , inventory_subject, 2 tables created automatically, don't k...
Read more

python - Mongodb How to add addtional information when aggregating? -

i beginner , wrote line pipeline works, wanna add other information output, screen name , or number of tweets.i tried add under $group gave me syntax error everytime here pipeline: def make_pipeline(): # complete aggregation pipeline pipeline = [ { '$match': { "user.statuses_count": {"$gt":99 }, "user.time_zone": "brasilia" } }, { "$group": { "_id": "$user.id", "followers": { "$max": "$user.followers_count" } } }, { "$sort": { "followers": -1 } }, { "$limit" : 1 } ]; i using on example : { "_id" : objectid("5304e2e3cc9e684aa98bef97"), "text" : "first week of school on :p", "in_reply_to_status_id" : null, "retweet_count" : null, ...
Read more

java - Incorrect order of records in M-M relationship in hibernate -

Image
i have 4 records in bridge table in mysql database. using @manytomany in hibernate, accurate order of employees incorrect incorrect of projects. following required material figure out doing mistake. this source. @entity @table(name="project") public class projectbean { @id @generatedvalue @column(name="project_id") private int projectid; @column(name="title") private string projecttitle; @manytomany(mappedby="projects") private collection<employeebean> employees; public projectbean() { employees = new arraylist<employeebean>(); } //getters & setters } @entity @table(name="employee") public class employeebean { @id @generatedvalue @column(name="employee_id") private int employee_id; @column(name="first_name") private string ...
Read more