org.apache.shenyu.plugin.sign.utils

类 SecretCipherUtils

java.lang.Object

org.apache.shenyu.plugin.sign.utils.SecretCipherUtils

public final class SecretCipherUtils
extends java.lang.Object

AES/CBC/PKCS5Padding decryption utility for appSecret verification.

Decrypts appSecret when received from ShenYu admin (sync data center). AppSecret is stored encrypted in database but must be decrypted before use in signature verification.

方法概要

限定符和类型	方法和说明
static java.lang.String	decrypt(java.lang.String key, java.lang.String iv, java.lang.String ciphertext) Decrypt ciphertext appSecret using AES/CBC/PKCS5Padding.
static boolean	isEncrypted(java.lang.String value) Check whether the given value is already encrypted (has the ENC: prefix).

从类继承的方法 java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

方法详细资料

decrypt

public static java.lang.String decrypt(java.lang.String key,
                                       java.lang.String iv,
                                       java.lang.String ciphertext)

Decrypt ciphertext appSecret using AES/CBC/PKCS5Padding.

If the value does not start with CIPHER_PREFIX, it is treated as legacy plaintext and returned as-is (backward compatibility).

参数:

key - AES key (must be 16 bytes for AES-128)

iv - initialization vector (must be 16 bytes)

ciphertext - the ciphertext from database (with ENC: prefix)

返回:

the original plaintext appSecret

isEncrypted

public static boolean isEncrypted(java.lang.String value)

Check whether the given value is already encrypted (has the ENC: prefix).

参数:

value - the value to check

返回:

true if encrypted