public class SecurityUtil
extends java.lang.Object
1、client
stage1_hash = SHA1(明文密码).
token = SHA1(scramble + SHA1(stage1_hash)) XOR stage1_hash
2. server
token = SHA1(token XOR SHA1(scramble + password))
3. checktoken vs password
| 构造器和说明 |
|---|
SecurityUtil() |
| 限定符和类型 | 方法和说明 |
|---|---|
static java.lang.String |
byte2HexStr(byte[] b)
bytes转换成十六进制字符串
|
static byte[] |
hexStr2Bytes(java.lang.String src)
bytes转换成十六进制字符串
|
static java.lang.String |
md5String(java.lang.String content) |
static byte[] |
scramble411(byte[] pass,
byte[] seed) |
static java.lang.String |
scrambleGenPass(byte[] pass) |
static boolean |
scrambleServerAuth(byte[] token,
byte[] pass,
byte[] seed)
server auth check
|
public static java.lang.String md5String(java.lang.String content)
throws java.security.NoSuchAlgorithmException
java.security.NoSuchAlgorithmExceptionpublic static final java.lang.String scrambleGenPass(byte[] pass)
throws java.security.NoSuchAlgorithmException
java.security.NoSuchAlgorithmExceptionpublic static final boolean scrambleServerAuth(byte[] token,
byte[] pass,
byte[] seed)
throws java.security.NoSuchAlgorithmException
java.security.NoSuchAlgorithmExceptionpublic static final byte[] scramble411(byte[] pass,
byte[] seed)
throws java.security.NoSuchAlgorithmException
java.security.NoSuchAlgorithmExceptionpublic static java.lang.String byte2HexStr(byte[] b)
public static byte[] hexStr2Bytes(java.lang.String src)
Copyright © 2021. All rights reserved.