开发者

what is keyed-HMAC (Hash Message Authentication Code)

问答 作者:

what is keyed-HMAC (Hash Message Authentication Code)? An开发者_运维百科d how to write HMAC in web service using java?

An HMAC is a digest used to verify the authenticity of a message. Unlike, say an md5 signature, it's generated using a secret key known only to you and the receiving party so that it shouldn't be possible to forge by a third party.

In order to generate one, you'll need to make use of some java.security classes. Try this:

public byte[] generateHMac(String secretKey, String data, String algorithm /* e.g. "HmacSHA256" */) {

    SecretKeySpec signingKey = new SecretKeySpec(secretKey.getBytes(), algorithm);

    try {
        Mac mac = Mac.getInstance(algorithm);
        mac.init(signingKey);

        return mac.doFinal(data.getBytes());
    }
    catch(InvalidKeyException e) {
        throw new IllegalArgumentException("invalid secret key provided (key not printed for security reasons!)");
    }
    catch(NoSuchAlgorithmException e) {
        throw new IllegalStateException("the system doesn't support algorithm " + algorithm, e);
    }
}

继续阅读:restful-authenticationweb-services

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9