[英]How to store encrypted data in microsoft sql database and retrieve it and decrypt it
我正在使用下面的类来加密和解密我的数据
<?php
class ConnectionInfo
{
public $mServerName;
public $mConnectionInfo;
public $conn;
public function GetConnection()
{
# code...
$this->mServerName = "DESKTOP-ES2IEHB\SQLEXPRESS";
$this->mConnectionInfo = array("Database"=>"thefaithdb");
$this->conn = sqlsrv_connect($this->mServerName,$this->mConnectionInfo);
return $this->conn;
}
public function my_simple_crypt( $string, $action = 'e',$algo ) {
// you may change these values to your own
$secret_key = 'my_simple_secret_key';
$secret_iv = 'my_simple_secret_iv';
$output = false;
$encrypt_method = "AES-256-CBC";
$key = hash( $algo, $secret_key );
$iv = substr( hash( $algo, $secret_iv ), 0, 16 );
if( $action == 'e' ) {
$output = base64_encode( openssl_encrypt( $string, $encrypt_method, $key, 0, $iv ) );
}
else if( $action == 'd' ){
$output = openssl_decrypt( base64_decode( $string ), $encrypt_method, $key, 0, $iv );
}
return $output;
}
}
?>
当我使用该类对数据进行解密和加密而不将其存储在数据库中时,当字符串为全长时,它会很好地工作
<?php
require_once(dirname(__FILE__).'/Secure.php');
$mainpass = "ALSONG DUSTAN PHILANDER";
//MD5 encryption
$options = [
'cost' => 12,
];
$mSecure = new SecurityClass();
$encrypted = $mSecure->my_simple_crypt( $mainpass, 'e','sha512' );
$decrypted = $mSecure->my_simple_crypt($encrypted, 'd','sha512' );
echo "encrypted $encrypted<br/>";
echo "decrypted $decrypted<br/>";
?>
这是输出, 它在链接中
现在,当我使用此代码存储该mssql数据库时
<?php
require_once(dirname(__FILE__).'/ConnectionInfo.php' );
//Get up our connection
$mConnectionInfo = new ConnectionInfo ();
$mConnectionInfo->GetConnection();
if ($mConnectionInfo->conn) {
# code...
echo "Connected<br/>";
}
$encrypted = $mConnectionInfo->my_simple_crypt('ALSONG DUSTAN PHILANDER' , 'e','sha384' );
$myparams['Item_Name'] = $encrypted;
$encrypted2 = $mConnectionInfo->my_simple_crypt('56' , 'e','sha384' );
$myparams['Item_Age'] = $encrypted2;
$parameters = array(array(&$myparams['Item_Name'],SQLSRV_PARAM_IN),
array(&$myparams['Item_Age'],SQLSRV_PARAM_IN));
$sql = "EXEC spGetUser @Item_Name = ? , @Item_Age = ? ";
$stmt = sqlsrv_prepare($mConnectionInfo->conn,$sql,$parameters);
$work = sqlsrv_execute($stmt);
if ($work) {
# code...
echo "Successful $encrypted<br/>";
}
else {
# code...
echo "Connection Failed.<br/>";
die(print_r(sqlsrv_errors(),true));
}
?>
这是成功的,然后当我想使用存储过程从数据库中取回它时
CREATE PROCEDURE [dbo].[spGetAge]
@Item_Name nvarchar(max)
AS
SELECT Name AS IDName,Age FROM [User] WHERE Name = @Item_Name
RETURN 0
然后这是取回它的PHP代码
<?php
require_once(dirname(__FILE__).'/ConnectionInfo.php' );
//Get up our connection
$mConnectionInfo = new ConnectionInfo ();
$mConnectionInfo->GetConnection();
if ($mConnectionInfo->conn) {
# code...
echo "Connected<br/>";
}
$encrypted1 = $mConnectionInfo->my_simple_crypt('ALSONG DUSTAN PHILANDER' , 'e','sha384' );
$myparams2['Item_Name'] = $encrypted1;
$params = array(array(&$myparams2['Item_Name'],SQLSRV_PARAM_IN));
$sql2 = "EXEC spGetAge @Item_Name = ?";
$stmt2 = sqlsrv_prepare($mConnectionInfo->conn,$sql2,$params);
$work = sqlsrv_execute($stmt2);
if(!$stmt2)
{
echo "Query failed <br/>";
die( print_r( sqlsrv_errors(), true) );
}
else{
$row = sqlsrv_fetch_array($stmt2,SQLSRV_FETCH_ASSOC);
$name = $row['IDName'];
if ($name==null) {
# code...
echo "Empty";
}
$decrypted = $mConnectionInfo->my_simple_crypt($row['IDName'], 'd','sha384' );
$decrypted2 = $mConnectionInfo->my_simple_crypt($row['Age'], 'd','sha384' );
echo "The age is $decrypted2 of $decrypted <br/>";
echo $row['IDName'] ;
echo "<br/> The name is $encrypted1";
}
?>
输出是在下面的链接中
仅当我的加密输入字符串长度超过14个字符时,才会出现此问题。 将其存储在数据库中然后解密并将其完美运行后,如何使它也可以工作。 谢谢您的帮助
我觉得用php加密反正是错误的方法。如果您将数据存储在sql服务器中,则那里没有所需的所有工具。 试一下这篇文章。 一旦知道要使用多少层加密,就可以在服务器上创建证书和密钥。 如果要在sql服务器上获取信息,请在mssql服务器上编写一个使用您的组件的存储过程,如果要显示该组件,请准备一个存储过程来解密它们(无论如何,您都应该拥有该存储过程,因为数据是如果未在mssql服务器上解密,将无法读取)。
将加密文本存储在数据库中,根据密码查询和解密
[英]Store encrypted texts in the database , query and decrypt it back base on password
如何使用 Codeigniter 从数据库中解密加密密码
[英]How to Decrypt an Encrypted Password from Database using Codeigniter
如何在PHP中解密由SQL Server的EncryptByPassPhrase()加密的字符串?
[英]How to decrypt a string encrypted by SQL Server's EncryptByPassPhrase() in PHP?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.