我需要加密/解密在服務器端,這裏是我的雲代碼,類似於代碼的NodeJS:
var crypto = require('crypto');
var cryptoAlgorithm = "aes-128-cbc"; //or whatever you algorithm you want to choose see http://nodejs.org/api/crypto.html
var cryptoPassword = "theLongAndRandomPassphrase";
var cipher = crypto.createCipher(cryptoAlgorithm,cryptoPassword);
var decipher = crypto.createDecipher(cryptoAlgorithm,cryptoPassword);
exports.myCiphering = {
encrypt:function(text){
var encrypted = cipher.update(text,'utf8','hex')
encrypted += cipher.final('hex');
return encrypted;
},
decrypt: function(text){
var decrypted = decipher.update(text,'hex','utf8')
decrypted += decipher.final('utf8');
return decrypted;
}
};
如果這個片段已經保存在「雲/ ciphering.js」,你可以再使用這樣隨時隨地雲代碼加密工具:
var text = "encryptMe";
var ciphering = require("cloud/ciphering.js").myCiphering;
var encrypted = ciphering.encrypt(text);
var decrypted = ciphering.decrypted(encrypted);
if (decrypted == text){
//the "password" is correct
}
我只是好奇,什麼被認爲是「好習慣」,例如,應用戶的密碼確實被存儲在解析純文本? SSL是否足以保護髮送和接收數據?在使用Parse的默認設置之前,我只是試驗和測試可能性。 –