SpringBoot配置文件脱敏

SpringBoot集成Jasypt配置很简单，只需引入依赖，然后配置Jasypt相关属性参数即可：
● Maven

1. <dependency>
2.   <groupId>com.github.ulisesbocchio</groupId>
3.   <artifactId>jasypt-spring-boot-starter</artifactId>
4.   <version>3.0.4</version>
5. </dependency>

复制代码

1、使用默认加解密方式

● 生成密文

1. package com.example.jasptytest;
3. import org.jasypt.encryption.StringEncryptor;
4. import org.junit.jupiter.api.Test;
5. import org.springframework.beans.factory.annotation.Autowired;
6. import org.springframework.boot.test.context.SpringBootTest;
8. @SpringBootTest
9. class JasptyTestApplicationTests {
11.         @Autowired
12.         StringEncryptor stringEncryptor;
14.         @Test
15.         void contextLoads() {
16.                 final String url = stringEncryptor.encrypt("jdbc:mysql://172.16.156.158:3306/lucene?characterEncoding=utf-8&useSSL=true&serverTimezone=Asia/Shanghai");
17.                 final String u = stringEncryptor.encrypt("wq");
18.                 final String p = stringEncryptor.encrypt("qifeng");
19.                 System.out.println("url: " + url);
20.                 System.out.println("u: " + u);
21.                 System.out.println("p: " + p);
22.         }
24. }

复制代码

2、使用指定加解密方式

● 配置加解密bean

1. jasypt:
2.   encryptor:
3.     algorithm: PBEWithMD5AndDES
4.     bean: stringEncryptor

复制代码

● 注册加解密bean

1. @Bean("stringEncryptor")
2. public StringEncryptor stringEncryptor(@Value("${jasypt.encryptor.password}") String password){
3.     StandardPBEStringEncryptor encryptor = new StandardPBEStringEncryptor();
4.     encryptor.setPassword(password);
5.     encryptor.setAlgorithm("PBEWithMD5AndDES");
6.     return encryptor;
7. }

复制代码

● 生成密文

1. public static void main(String[] args) {
2.         StandardPBEStringEncryptor encryptor = new StandardPBEStringEncryptor();
3.         encryptor.setPassword("sdas$%#^*GHJu");
4.         encryptor.setAlgorithm("PBEWithMD5AndDES");
5.         final String url = encryptor.encrypt("jdbc:mysql://172.16.156.158:3306/lucene?characterEncoding=utf-8&useSSL=true&serverTimezone=Asia/Shanghai");
6.         final String u = encryptor.encrypt("wq");
7.         final String p = encryptor.encrypt("qifeng");
8.         System.out.println("url: " + url);
9.         System.out.println("u: " + u);
10.         System.out.println("p: " + p);
11.     }

复制代码

3、使用

● 配置文件加密
密文使用ENC()包裹

1. spring:
2.   datasource:
3.     type: com.alibaba.druid.pool.DruidDataSource
4.     url: ENC(NjKtplPL9XmtxnUCz7ySOM8259+OH3mBf378s5bYNRoogK8hlltoSMOoalABVsRpp+6Q3b7ZsIm3aJERPjv5hSC0lOEJYegyzUNvv3m2Sq0hXZ5qdyLkugNtRhsF7w6seZN7eN/OdVW2QRWchvmCUG7ChLzlMP5NhbBk62/hSFPthLQDMUnHHJv8iT5EB1m8)
5.     driver-class-name: com.mysql.cj.jdbc.Driver
6.     username: ENC(4ZqAMYAkPXJmTyBptPa1osuHeD62D4LYtqO1iC70Htd+1ILWTui2ZXW2EDPWkGst)
7.     password: ENC(b6YpA5JYiWImDqhz5uVeHYLM2K3eJihVbgGfgoaH0hMR3QOljes4Kb0ckvu+xk4s)

复制代码

● 启动应用时，配置系统属性，idea配置VM选项

1. java -jar test.jar -Djasypt.encryptor.password=sdas$%#^*GHJu

复制代码

免责声明：如果侵犯了您的权益，请联系站长，我们会及时删除侵权内容，谢谢合作！