package edu.kh.community.common.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.annotation.WebFilter;
import javax.servlet.http.HttpFilter;
import javax.servlet.http.HttpServletRequest;
import edu.kh.community.common.wrapper.EncryptWrapper;
@WebFilter(filterName="encryptFilter",
urlPatterns = {"/member/login",
"/member/signUp",
"/member/myPage/changePw",
"/member/myPage/secession"})
public class EncryptFilter extends HttpFilter implements Filter {
public void init(FilterConfig fConfig) throws ServletException {}
public void destroy() {}
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
HttpServletRequest req = (HttpServletRequest)request;
EncryptWrapper wrapper = new EncryptWrapper(req);
chain.doFilter(wrapper, response);
}
}
package edu.kh.community.common.wrapper;
import java.nio.charset.Charset;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.Base64;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletRequestWrapper;
public class EncryptWrapper extends HttpServletRequestWrapper {
public EncryptWrapper(HttpServletRequest request) {
super(request);
}
@Override
public String getParameter(String name) {
String value = null;
switch(name) {
case "inputPw" :
case "memberPw" :
case "currentPw" :
case "newPw" :
value=getSha512(super.getParameter(name));
break;
default : value = super.getParameter(name);
}
return value;
}
private String getSha512(String pw) {
String encryptPw = null;
MessageDigest md = null;
try {
md = MessageDigest.getInstance("SHA-512");
byte[] bytes = pw.getBytes(Charset.forName("UTF-8"));
md.update(bytes);
encryptPw = Base64.getEncoder().encodeToString(md.digest());
System.out.println("암호화 전 : " + pw);
System.out.println("암호화 후 : " + encryptPw);
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
}
return encryptPw;
}
}