- 분류 전체보기 (7882)
- 공지사항 (22)
- Format&Encrypt (13)
- Java (360)
- C (50)
- C++ (52)
- C샵 (NET) (143)
- Python (150)
- Go Lang (Go 언어) (107)
- Kotlin (549)
- Swift (219)
- Objective-C (193)
- Android (970)
- IOS (638)
- Flutter (364)
- FrontEnd (109)
- JavaScript (383)
- Jquery (103)
- Http & Api (101)
- VueJs (51)
- AngularJs (10)
- ReactJs (16)
- SE & OS & HW (52)
- DataBase (103)
- OracleDB (202)
- MySqlDB (103)
- MsSqlDB (107)
- Network (113)
- Spring (118)
- NodeJs (222)
- Redis (RDS) (31)
- Aws (Amazon) (44)
- ADB (cmd) (47)
- MacOs (cmd) (27)
- Linux (cmd) (146)
- Window (cmd) (34)
- Office (23)
- 비트버킷 & Git (75)
- Library & F.W (111)
- 참고 사이트 (159)
- IT정보 & IT소식 (260)
- IT기술 & IT용어 (267)
- 투케이2K 에러관리 (302)
- 투케이2K 업무정리 (149)
- 투케이2K 유틸파일 (162)
- 투케이2K 알고리즘 (105)
- 투케이2K 로직정리 (138)
- 투케이2K 학습정리 (140)
- 투케이2K 일상&생활 (39)
Notice
Recent Posts
Recent Comments
Link
투케이2K
965. (Android/Java) [nimbusds] JWE AES 128 GCM 인코딩 암호화 수행 실시 - A128GCM , A128GCMKW 본문
Android
965. (Android/Java) [nimbusds] JWE AES 128 GCM 인코딩 암호화 수행 실시 - A128GCM , A128GCMKW
투케이2K 2025. 4. 3. 07:35[개발 환경 설정]
개발 툴 : AndroidStudio
개발 언어 : Java / Kotlin
[소스 코드]
// --------------------------------------------------------------------------------------
[개발 및 테스트 환경]
// --------------------------------------------------------------------------------------
- 언어 : Java / Kotlin
- 개발 툴 : AndroidStudio
- 기술 구분 : nimbusds / JWE / JWT / AES
// --------------------------------------------------------------------------------------
// --------------------------------------------------------------------------------------
[nimbusds 라이브러리 의존성 부여 설정 : build.gradle]
// --------------------------------------------------------------------------------------
// TODO [JWE 암복호화 관련]
implementation 'com.nimbusds:nimbus-jose-jwt:10.0.2'
// --------------------------------------------------------------------------------------
// --------------------------------------------------------------------------------------
[Java : 소스 코드]
// --------------------------------------------------------------------------------------
// --------------------------------------------------------------------
// TODO [전역 변수 선언]
// --------------------------------------------------------------------
private static final String AES128_GCM_KEY = "0123456789abcdef"; // [16 바이트]
// --------------------------------------------------------------------
// TODO [AES GCM : JWE 인코딩 수행]
// --------------------------------------------------------------------
// TODO [Call Method]
// --------------------------------------------------------------------
/*
JSONObject jsonObject = new JSONObject();
jsonObject.put("iss", "App"); // [발급자]
jsonObject.put("exp", "1743486179"); // [만료 시간]
jsonObject.put("iat", "1743486119"); // [발급 시간]
jsonObject.put("employeeNo", "T_1234567890"); // [사번]
jsonObject.put("name", "투케이"); // [이름]
C_JWE_Encryption_Module.encodeAes128GcmJwe(String.valueOf(jsonObject));
*/
// --------------------------------------------------------------------
// TODO [Return Data]
// --------------------------------------------------------------------
/*
D///===========//: ================================================
I/: [LOG :: CLASS PLACE :: com.example.javaproject.C_Module.C_JWE_Encryption_Module.encodeAes128GcmJwe(C_JWE_Encryption_Module.java:239)]
I/: ----------------------------------------------------
I/: [LOG :: DESCRIPTION :: C_JWE_Encryption_Module :: encodeAes128GcmJwe :: JWEObject 정보 확인]
I/: ----------------------------------------------------
I/: [LOG :: getHeader :: {"cty":"application/json","typ":"JWE","enc":"A128GCM","tag":"zRrpiXX0v9ZFh7zsW0kKWg","alg":"A128GCMKW","iv":"s7RIixy84UMRlCoa"}]
I/: ----------------------------------------------------
I/: [LOG :: getEncryptedKey :: OaMpJOgmB8g0V5Srj3evvQ]
I/: ----------------------------------------------------
I/: [LOG :: getCipherText :: emJ6aJIadvX_pdVF3i2r8obj3jOQ_XpP0WqRBReAFT5KFvmfUVSwmVINVMlKvR8-O9LZ4xrBv1qeuuOpKdkMKCzV9ebX1nfEnMD3p4CQgZoCg4chNroqG9yV0PrbL5tgrdE]
I/: ----------------------------------------------------
I/: [LOG :: getIV :: yNaG7f8q8SWuppQP]
I/: ----------------------------------------------------
I/: [LOG :: getAuthTag :: 62ye1ZcMy4CkFV6ADJHMzw]
I/: ----------------------------------------------------
I/: [LOG :: getState :: ENCRYPTED]
D///===========//: ================================================
D///===========//: ================================================
I/: [LOG :: CLASS PLACE :: com.example.javaproject.C_Module.C_JWE_Encryption_Module.encodeAes128GcmJwe(C_JWE_Encryption_Module.java:272)]
I/: ----------------------------------------------------
I/: [LOG :: DESCRIPTION :: C_JWE_Encryption_Module :: encodeAes128GcmJwe :: JWE 인코딩 수행]
I/: ----------------------------------------------------
I/: [LOG :: KEY :: 0123456789abcdef]
I/: ----------------------------------------------------
I/: [LOG :: Encode :: eyJjdHkiOiJhcHBsaWNhdGlvbi9qc29uIiwidHlwIjoiSldFIiwiZW5jIjoiQTEyOEdDTSIsInRhZyI6InpScnBpWFgwdjlaRmg3enNXMGtLV2ciLCJhbGciOiJBMTI4R0NNS1ciLCJpdiI6InM3UklpeHk4NFVNUmxDb2EifQ.OaMpJOgmB8g0V5Srj3evvQ.yNaG7f8q8SWuppQP.emJ6aJIadvX_pdVF3i2r8obj3jOQ_XpP0WqRBReAFT5KFvmfUVSwmVINVMlKvR8-O9LZ4xrBv1qeuuOpKdkMKCzV9ebX1nfEnMD3p4CQgZoCg4chNroqG9yV0PrbL5tgrdE.62ye1ZcMy4CkFV6ADJHMzw]
D///===========//: ================================================
*/
// --------------------------------------------------------------------
public static String encodeAes128GcmJwe(String payload){
String returnData = null; // [Return 데이터]
String M_LOG = null; // [Log 데이터]
try {
// -----------------------------------------------
// TODO [1] : [key >> Byte 변환]
// -----------------------------------------------
byte keyBytes [] = AES128_GCM_KEY.getBytes(StandardCharsets.UTF_8);
// -----------------------------------------------
// TODO [2] : [SecretKey 가져오기]
// -----------------------------------------------
SecretKeySpec secretKeySpec = new SecretKeySpec(keyBytes, "AES");
// -----------------------------------------------
// TODO [3] : [JWE 헤더 설정 : A128GCM 사용]
// -----------------------------------------------
/**
* {
* "cty": "application/json",
* "typ": "JWE",
* "enc": "A128GCM",
* "tag": "SddQInhWp2DFzVFtMEDcSw", ------------> Random : 무결성 검증 Auth Tag 자동 생성
* "alg": "A128GCMKW",
* "iv": "qBQizBH5fvDRjgj_" --------------------> Random : 암호화 과정에서 사용된 초기화 벡터
* }
*/
// -----------------------------------------------
JWEHeader header = new JWEHeader.Builder(
JWEAlgorithm.A128GCMKW, // TODO [alg : 알고 리즘]
EncryptionMethod.A128GCM) // TODO [enc : 인코딩 타입]
.type(new JOSEObjectType("JWE")) // TODO [typ : 타입]
.contentType("application/json") // TODO [cty : 컨텐츠 타입]
.build();
// -----------------------------------------------
// TODO [4] : [페이로드 지정]
// -----------------------------------------------
Payload payload_Object = new Payload(payload);
// -----------------------------------------------
// TODO [5] : [JWEObject 생성] / [인코딩 수행 실시]
// -----------------------------------------------
//*
JWEObject jweObject = new JWEObject(header, payload_Object);
//jweObject.encrypt(new DirectEncrypter(secretKeySpec)); // TODO [알고리즘 : DIR]
jweObject.encrypt(new AESEncrypter(secretKeySpec)); // TODO [알고리즘 : JWEAlgorithm.A128GCMKW]
S_Log._D_(ACTIVITY_NAME + " :: encodeAes128GcmJwe :: JWEObject 정보 확인", new String[]{
"getHeader :: " + jweObject.getHeader(),
"getEncryptedKey :: " + jweObject.getEncryptedKey(),
"getCipherText :: " + jweObject.getCipherText(),
"getIV :: " + jweObject.getIV(),
"getAuthTag :: " + jweObject.getAuthTag(),
"getState :: " + jweObject.getState()
});
String jweString = jweObject.serialize(); // TODO [JWE Encode String]
// */
// -----------------------------------------------
// TODO [6] : [JWE 토큰 널 체크 수행]
// -----------------------------------------------
if (C_Util.stringNotNull(jweString) == true){
returnData = jweString;
}
else {
M_LOG = "Error : jweString Is Null";
}
}
catch (Exception e){
e.printStackTrace();
M_LOG = "Exception : " + e.getMessage();
}
try { M_LOG = (M_LOG != null) ? M_LOG : ( (returnData != null) ? "Encode :: " + returnData : "Encode :: null" ); } catch (Exception el){}
S_Log._D_(ACTIVITY_NAME + " :: encodeAes128GcmJwe :: JWE 인코딩 수행", new String[]{"KEY :: " + AES128_GCM_KEY, String.valueOf(M_LOG)});
return returnData;
}
// --------------------------------------------------------------------------------------
// --------------------------------------------------------------------------------------
[참고 사이트]
// --------------------------------------------------------------------------------------
[온라인 JWT 토큰 복호화 및 헤더 값 확인 참고 사이트]
https://fusionauth.io/dev-tools/jwt-decoder
[라이브러리] [nimbus-jose-jwt] JWE (JSON Web Encryption) JSON 웹 암호화 및 복호화 라이브러리
https://blog.naver.com/kkh0977/223817959400?trackingCode=blog_bloghome_searchlist
[JWT (Json Web Token) 개념 설명]
https://blog.naver.com/kkh0977/222934042760?trackingCode=blog_bloghome_searchlist
[JWE (JSON Web Encryption) JSON 웹 암호화 설명]
https://blog.naver.com/kkh0977/223817878517?trackingCode=blog_bloghome_searchlist
// --------------------------------------------------------------------------------------반응형
'Android' 카테고리의 다른 글
'Android' Related Articles
more
