猿问

PHP:从单行私钥获取私钥

我正在尝试创建一个JWT令牌。另一台服务器将公钥存储在一行中并使用它进行验证。

此外,用于验证的公钥是单行的。

因此,要生成正确的 JWT 令牌,我认为我还应该在一行中使用私钥(可能有\n也可能没有)。

我正在使用openssl_sign生成openssl_reource用作密钥的令牌。我从openssl_pkey_get_private得到那个参数。

但是在这种情况下发生的问题是,它要么接受pem文件路径,要么接受PEM字符串格式的密钥。所以,如果我将它private_key作为单行传递,它不会给我所需的输出。

那么,我该如何解决这个问题。正如我看到的其他语言库能够通过在一行中传递私钥来生成签名。


哔哔one
浏览 200回答 1
1回答

ibeautiful

在 PHP 中,键可以用换行符或单行(带\n)来格式化。两者都有效。在以下示例中,为简单起见,我使用了 512 位加密的 RSA 密钥(尽管出于安全原因,实际上必须使用更大的密钥(>= 2048 位)):<?php// Private key: 512 bit for simplicity// Passphrase: MyPassphrase// openssl genrsa -aes256 -out private.pem 512$privKeyEnc = "-----BEGIN RSA PRIVATE KEY-----Proc-Type: 4,ENCRYPTEDDEK-Info: AES-256-CBC,8F2D6F9594B3D379BF9D9748BD174458RP2fyz1VNBKHiCadC5B9fjxV7z7AMAqbsN2vykFfPhdUFsxlJaecEeTMT7s6IbZNPr80+ljLjJ0SxJiK+j8DAc/Wrf+qyYUFcWbsvOhUIPyB5ww9+mEeIERJCigsyZJ7k/Apau/BypdC9vCXKB3wM9FcmvP1g/ZwVoXfN3TIPEfWTktvuf74yFNoIaVbZAK/+tzAGduu9wLkr6WTq4Isqy/IPjVCp9VwH1wNnz+hjkO7oELcCpFieIvAidUMKBR9EdexLQCimbOl2wlfRNLincK8+FDOVWx6ElFFQlhzyWQCt8ed1fdiAggKxOco4Ww2tFjIzaO4KXlbc9JFGd9PzigpftN/aHbk3c+x0E+3q5u8eySai4vgk38s1KaE7rn/rarCgtGxOlbbTkI3opkjIrGlrsEyexKtS23mI/Dgcco=-----END RSA PRIVATE KEY-----";// One-liner using \n$privKeyEnc_1Line = "-----BEGIN RSA PRIVATE KEY-----\nProc-Type: 4,ENCRYPTED\nDEK-Info: AES-256-CBC,8F2D6F9594B3D379BF9D9748BD174458\n\nRP2fyz1VNBKHiCadC5B9fjxV7z7AMAqbsN2vykFfPhdUFsxlJaecEeTMT7s6IbZN\nPr80+ljLjJ0SxJiK+j8DAc/Wrf+qyYUFcWbsvOhUIPyB5ww9+mEeIERJCigsyZJ7\nk/Apau/BypdC9vCXKB3wM9FcmvP1g/ZwVoXfN3TIPEfWTktvuf74yFNoIaVbZAK/\n+tzAGduu9wLkr6WTq4Isqy/IPjVCp9VwH1wNnz+hjkO7oELcCpFieIvAidUMKBR9\nEdexLQCimbOl2wlfRNLincK8+FDOVWx6ElFFQlhzyWQCt8ed1fdiAggKxOco4Ww2\ntFjIzaO4KXlbc9JFGd9PzigpftN/aHbk3c+x0E+3q5u8eySai4vgk38s1KaE7rn/\nrarCgtGxOlbbTkI3opkjIrGlrsEyexKtS23mI/Dgcco=\n-----END RSA PRIVATE KEY-----";// Public key:&nbsp;// Passphrase: MyPassphrase// openssl rsa -in private.pem -outform PEM -pubout -out public.pem$pubKey = "-----BEGIN PUBLIC KEY-----MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAMjYQLbdIVgKX1mSyKijOIpmlB9YWui1KoCniRNHUPEsxth+o9fZXZMo1gzh9ZlFs6VLiyU7kv2+5QElOnhNzwcCAwEAAQ==-----END PUBLIC KEY-----";// One-liner using \n$pubKey_1Line = "-----BEGIN PUBLIC KEY-----\nMFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAMjYQLbdIVgKX1mSyKijOIpmlB9YWui1\nKoCniRNHUPEsxth+o9fZXZMo1gzh9ZlFs6VLiyU7kv2+5QElOnhNzwcCAwEAAQ==\n-----END PUBLIC KEY-----";$dataToSign = 'The quick brown fox jumps over the lazy dog.';// Signing//$privateKey = openssl_pkey_get_private("$privKeyEnc", "MyPassphrase");&nbsp; &nbsp; &nbsp;// also works$privateKey = openssl_pkey_get_private("$privKeyEnc_1Line", "MyPassphrase");&nbsp;openssl_sign($dataToSign, $signature, $privateKey, 'sha256');&nbsp;$signatureBase64 = base64_encode($signature);print("Signature (Base64): ".$signatureBase64."<br>");// Verifying$publicKey = openssl_pkey_get_public("$pubKey");&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;//$publicKey = openssl_pkey_get_public("$pubKey_1Line");&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;// also works$verified = openssl_verify($dataToSign, $signature, $publicKey,'sha256');print("Verification: ".$verified."<br>");/*Output:Signature (Base64): KVuUd+xy6at0emmhF20rbiD9lWzIN9euwKbeEm7aMvxqEkJ68HrjAoDJ37R3QGPI24woXY3TON9pahAhx+YNhQ==Verification: 1*/?>
0
随时随地看视频慕课网APP

相关分类

PHP
php如何把参数放在Http Request Heade???? 1 回答
我要回答