Home >Backend Development >PHP Tutorial >Detailed explanation of AES256 encryption technology in PHP and its application in the framework
With the development and popularization of the Internet, data security has received more and more attention. Encryption technology is a very effective means during data transmission and storage. Encryption can ensure the confidentiality and integrity of data. In PHP, AES256 encryption technology is a very popular encryption method. This article will introduce in detail its application method in the framework.
The AES256 encryption algorithm has the following advantages:
(1) Generate a random key
Before using the AES256 encryption algorithm for encryption operations, you first need to generate a random key. Random keys can be generated through the openssl_random_pseudo_bytes() function in the openssl function library, as shown below:
$key = openssl_random_pseudo_bytes(32);
(2) Encrypted data
After generating a random key, you can use the key to The data is encrypted. Encryption operations can be performed through the openssl_encrypt() function. The sample code is as follows:
$plaintext = "Hello World"; $cipher = "aes-256-cbc"; $ivlen = openssl_cipher_iv_length($cipher); $iv = openssl_random_pseudo_bytes($ivlen); $ciphertext = openssl_encrypt($plaintext, $cipher, $key, OPENSSL_RAW_DATA, $iv); $ciphertext = $iv . $ciphertext;
Among them, $plaintext represents the original data to be encrypted, $cipher represents the encryption algorithm, $key represents the generated random key, and $ivlen Indicates the length of iv required by the encryption algorithm, and $iv indicates the initialization vector used in the encryption process. Finally, $iv and $ciphertext are combined into a string by splicing.
(3) Decrypt data
When decrypting data, you can use the openssl_decrypt() function to decrypt the encrypted ciphertext into the original data. The sample code is as follows:
$cipher = "aes-256-cbc"; $ivlen = openssl_cipher_iv_length($cipher); $iv = substr($ciphertext, 0, $ivlen); $ciphertext = substr($ciphertext, $ivlen); $plaintext = openssl_decrypt($ciphertext, $cipher, $key, OPENSSL_RAW_DATA, $iv); echo $plaintext;
Among them, $cipher, $ivlen, $iv, $ciphertext and $key are consistent with the corresponding variables in the encryption process, and finally the decrypted data is output through the echo statement.
(1) Define encryption middleware
First you need to define a middleware specifically for encrypting data. In the Laravel framework, you can use the artisan command to generate a middleware template. , the sample code is as follows:
php artisan make:middleware EncryptMiddleware
Then modify the generated EncryptMiddleware.php code to the following content:
<?php namespace AppHttpMiddleware; use Closure; use IlluminateContractsEncryptionEncrypter; use IlluminateSupportFacadesApp; class EncryptMiddleware { /** * The encrypter instance. */ protected $encrypter; /** * Create a new middleware instance. * * @param Encrypter $encrypter * @return void */ public function __construct(Encrypter $encrypter) { $this->encrypter = $encrypter; } /** * Handle an incoming request. * * @param IlluminateHttpRequest $request * @param Closure $next * @return mixed */ public function handle($request, Closure $next) { $response = $next($request); $content = $response->getContent(); $encryptedContent = $this->encrypter->encrypt($content); $response->setContent($encryptedContent); return $response; } }
Among them, $encrypter is the interface used to encrypt data in the Laravel framework, which can be referenced by Inject the implementation of this interface into EncryptMiddleware.
(2) Define decryption middleware
In addition to encryption middleware, you also need to define a middleware for decrypting data. The sample code is as follows:
<?php namespace AppHttpMiddleware; use Closure; use IlluminateContractsEncryptionDecryptException; use IlluminateContractsEncryptionEncrypter; class DecryptMiddleware { /** * The encrypter instance. */ protected $encrypter; /** * Create a new middleware instance. * * @param Encrypter $encrypter * @return void */ public function __construct(Encrypter $encrypter) { $this->encrypter = $encrypter; } /** * Handle an incoming request. * * @param IlluminateHttpRequest $request * @param Closure $next * @return mixed */ public function handle($request, Closure $next) { $encryptedContent = $request->getContent(); try { $content = $this->encrypter->decrypt($encryptedContent); } catch (DecryptException $e) { return response('Invalid encryption', 400); } $response = $next($request->merge(['content' => $content])); return $response; } }
This middleware will Get the encrypted data from the request and decrypt it, then pass the decrypted data to the next middleware.
(3) Register middleware
Finally, you need to register the above middleware into the Laravel framework. Middleware can be added in the $middlewareGroups attribute in the app/Http/Kernel.php file, as shown below:
protected $middlewareGroups = [ 'web' => [ // ... ], 'api' => [ // ... AppHttpMiddlewareEncryptMiddleware::class, AppHttpMiddlewareDecryptMiddleware::class, ], ];
Where, 'api' is the application programming interface to use encryption and decryption middleware, AppHttpMiddlewareEncryptMiddleware ::class represents encryption middleware, and AppHttpMiddlewareDecryptMiddleware::class represents decryption middleware.
The above is the detailed content of Detailed explanation of AES256 encryption technology in PHP and its application in the framework. For more information, please follow other related articles on the PHP Chinese website!