WeChat development: Java needs to add a permission file without policy restrictions when processing encrypted messages of WeChat

Others 2022-05-23 13:26:12 views: 0 
/**
   * Decrypt the ciphertext.
   *
   * @param cipherText The ciphertext to decrypt
   * @return decrypted plaintext
   */

Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding");
      SecretKeySpec key_spec = new SecretKeySpec(aesKey, "AES");
      IvParameterSpec iv = new IvParameterSpec(Arrays.copyOfRange(aesKey, 0, 16));
      cipher.init(Cipher.DECRYPT_MODE, key_spec, iv);

// Decode the ciphertext using BASE64
      byte[] encrypted = Base64.decodeBase64(cipherText);

      // decrypt
      original = cipher.doFinal(encrypted);

The following is omitted. . . . .
Please leave me a message if needed

 

 

When using JAVA to process the received message of WeChat, when processing the ciphertext, if you encounter

java.security.InvalidKeyException: Illegal key size or default parameters

 

this exception. Then you need to add the unpolished permission file to your JDK or JRE environment.

The download address is as follows:

      ● Java 5.0 No Policy Restriction File
      ● Java 6 No Policy Restriction File
      ● Java 7 No Policy Restriction File

      ● Java 8 no policy restriction file
      ● Other versions have no policy restriction file

      There is only one directory in the downloaded compressed package, which is the jce directory. This directory contains 4 files: README.txt, COPYRIGHT.html, local_policy.jar and US_export_policy.jar. The two jar files included are the files used in this configuration.
      We can view the above README.txt file. You need to configure the above two jar files in the JRE environment of the JDK, or in the JRE environment.
      Switch to the %JDK_Home%\jre\lib\security directory and overwrite the local_policy.jar and US_export_policy.jar files accordingly. At the same time, you may need to overwrite these two files in the %JRE_Home%\lib\security directory.
      The ultimate purpose of configuring the permissions file is to enable the application to obtain the corresponding permissions in the running environment, which can enhance the security of the application. Usually, we install the JRE on the application server, not the JDK. Therefore, it is necessary to overwrite these two permission files in the %JRE_Home%\lib\security directory of the application server. Many developers tend to ignore this, leading to accidents.

Guess you like

Origin http://10.200.1.11:23101/article/api/json?id=326805277&siteId=291194637
Recommended
Arc Browser for Windows 1.0 officially GA
A programmer born in the 1990s developed a video porting software and made over 7 million in less than a year. The ending was very punishing!
Ranking
1. Select Sort
Create a thread thread
3 press to play ball that reach 6
Programmation CUDA (4) : gestion de la mémoire
SpringBoot database connection pool Druid error
E Diudiu App redesign summary
4EVERLAND Hosting now supports SNS+IPFS
About HTTPS
[vue3+vite+ts+element-plu+sass] uses bug records in sass
Interpretation of HUAWEI CLOUD GaussDB (for Influx): Best Practice Data Modeling
Daily
More
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)

Code World

© 2018 codetd.com