Home Esplora Aiuto
Registrati Accedi
Kirin
/
Qiniu_Pro
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Ramo (Branch): master
Rami (Branch) Tag
Qiniu_Pro
/
app
/
http
/
middleware
/
EncryptDecryptMiddleware.php

EncryptDecryptMiddleware.php 2.2 KB
Permalink Cronologia Originale

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. <?php
    2. 

  2. 

  3. namespace app\http\middleware;
    4. 

  4. 

  5. use Closure;
    6. 

  6. use app\Request;
    7. 

  7. use think\Response;
    8. 

  8. 

  9. class EncryptDecryptMiddleware
    10. 

  10. {
    11. 

  11.     protected $secretKey = 'DUOs9QyBTDGdq3kPQcOnS6HEyp24He2h'; // 替换为你的密钥
    12. 

  12.     protected $cipher = 'AES-128-CBC';
    13. 

  13. 

  14.     public function handle(Request $request, Closure $next): Response
    15. 

  15.     {
    16. 

  16.         // 解密请求数据
    17. 

  17.         if ($request->param('iv')) {
    18. 

  18.             $decryptedData = $this->decryptData($request->param('iv'));
    19. 

  19.             foreach ($decryptedData as $key => $value) {
    20. 

  20.                 $request->param([$key => $value]);
    21. 

  21.             }
    22. 

  22.             // 继续执行下一个中间件或控制器
    23. 

  23.             $response = $next($request);
    24. 

  24. 

  25.             // 加密响应数据
    26. 

  26.             $originalContent = $response->getContent();
    27. 

  27.             $encryptedContent = $this->encryptData(json_decode($originalContent, true));
    28. 

  28.             $response->setContent(json_encode($encryptedContent));
    29. 

  29.             return $response;
    30. 

  30.         } else {
    31. 

  31.             return $next($request);
    32. 

  32.         }
    33. 

  33.     }
    34. 

  34. 

  35.     private function encryptData(array $data): array
    36. 

  36.     {
    37. 

  37.         $ivlen = openssl_cipher_iv_length($this->cipher);
    38. 

  38.         $iv = openssl_random_pseudo_bytes($ivlen);
    39. 

  39.         $ciphertext_raw = openssl_encrypt(json_encode($data), $this->cipher, $this->secretKey, OPENSSL_RAW_DATA, $iv);
    40. 

  40.         $hmac = hash_hmac('sha256', $ciphertext_raw, $this->secretKey, true);
    41. 

  41.         $ciphertext = base64_encode($iv . $hmac . $ciphertext_raw);
    42. 

  42. 

  43.         return ['data' => $ciphertext];
    44. 

  44.     }
    45. 

  45. 

  46.     private function decryptData(array $data): array
    47. 

  47.     {
    48. 

  48.         if (isset($data['data'])) {
    49. 

  49.             $c = base64_decode($data['data']);
    50. 

  50.             $ivlen = openssl_cipher_iv_length($this->cipher);
    51. 

  51.             $iv = substr($c, 0, $ivlen);
    52. 

  52.             $hmac = substr($c, $ivlen, $sha2len = 32);
    53. 

  53.             $ciphertext_raw = substr($c, $ivlen + $sha2len);
    54. 

  54.             $original_plaintext = openssl_decrypt($ciphertext_raw, $this->cipher, $this->secretKey, OPENSSL_RAW_DATA, $iv);
    55. 

  55.             $calcmac = hash_hmac('sha256', $ciphertext_raw, $this->secretKey, true);
    56. 

  56. 

  57.             if (hash_equals($hmac, $calcmac)) {
    58. 

  58.                 return json_decode($original_plaintext, true);
    59. 

  59.             }
    60. 

  60.         }
    61. 

  61. 

  62.         return [];
    63. 

  63.     }
    64. 

  64. }
    65.