package com.nanjing.water.common.security;

import com.nanjing.water.common.enums.ELogger;
import com.nanjing.water.common.util.LoggerUtil;
import org.slf4j.Logger;

import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.DESedeKeySpec;
import javax.crypto.spec.IvParameterSpec;
import java.nio.charset.Charset;
import java.security.InvalidKeyException;
import java.security.Key;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
import java.security.spec.InvalidKeySpecException;
import java.util.UUID;


public final class Des3Util {
    private Des3Util() {
        throw new IllegalStateException("Utility class");
    }

    private static final Logger sysLogger = LoggerUtil.get(ELogger.SYS_ERROR);

    private static final String TITLE = "Des3åŠ å¯†å·¥å…·";

    //é»˜è®¤åŠ å¯†åç§»é‡
    private static byte[] DEFAULT_IV = { 0x23, (byte)0xf2, (byte)0xa3, (byte)0xc6, 0x3e, 0x2b, (byte)0xe7, 0x28 };
    //åŠ å¯†ç®—æ³•
    private static final String ALGORITHM = "DESede";
    // åŠ è§£å¯†ç»Ÿä¸€ä½¿ç”¨çš„ç¼–ç æ–¹å¼
    private static final String DEFAULT_ENCODING = "utf-8";
    //å¯†é’¥
    public static final String DEFAULT_KEY = "com.ctrip.tour.cq.soa.v1";

    /**
     * ç”ŸæˆåŠ å¯†åç§»é‡
     * @param iv åç§»é‡
     */
    private static IvParameterSpec IvGenerator(byte[] iv) throws Exception {
        IvParameterSpec result = new IvParameterSpec(iv);
        return result;
    }

    /**
     * éšæœºç”Ÿæˆä¸€ä¸ªkey
     */
    public static String genKey() throws NoSuchAlgorithmException {
        byte[] keyBytes = UUID.randomUUID().toString().getBytes();
        KeyGenerator generator = KeyGenerator.getInstance(ALGORITHM);
        generator.init(new SecureRandom( keyBytes ) );
        SecretKey key = generator.generateKey();
        return Base64Util.encodeStream(key.getEncoded());
    }
    /**
     * æ ¹æ®æ˜Žæ–‡å—ç¬¦ä¸²ç”Ÿæˆkeyï¼ˆkeyé•¿åº¦å¿…é¡» å¤§äºŽç‰äºŽ 24ï¼‰
     */
    public static Key genKey(String key) throws InvalidKeyException, NoSuchAlgorithmException, InvalidKeySpecException {
        DESedeKeySpec spec = new DESedeKeySpec(key.getBytes());
        SecretKeyFactory keyfactory = SecretKeyFactory.getInstance(ALGORITHM);
        return keyfactory.generateSecret(spec);
    }

    /**
     * åŠ å¯†ä»¥byte[]æ˜Žæ–‡è¾“å…¥,byte[]å¯†æ–‡è¾“å‡º
     * @param buffer å¾…åŠ å¯†çš„å—èŠ‚ç 
     * @param key å¯†é’¥ï¼ˆkeyé•¿åº¦å¿…é¡» å¤§äºŽç‰äºŽ 24ï¼‰
     * @return åŠ å¯†åŽçš„å—èŠ‚ç 
     */
    private static byte[] encrypt(byte[] buffer, String key) {
        byte[] result = null;
        try {
            Cipher cipher = Cipher.getInstance(ALGORITHM +"/CBC/PKCS5Padding");
            IvParameterSpec IVSpec = IvGenerator(DEFAULT_IV);
            cipher.init(Cipher.ENCRYPT_MODE, genKey(key), IVSpec);
            byte[] temp = cipher.doFinal(buffer);
            result = Base64Util.encodeToStream(temp);
        } catch (Exception e) {
            sysLogger.error("Des3Util.encrypt", e);
        }
        return result;
    }
    /**
     * è§£å¯†ä»¥byte[]å¯†æ–‡è¾“å…¥ï¼Œä»¥byte[]æ˜Žæ–‡è¾“å‡º
     * @param buffer å¾…è§£å¯†çš„å—èŠ‚ç 
     * @param key å¯†é’¥ï¼ˆkeyé•¿åº¦å¿…é¡»æ˜¯8çš„å€æ•°ï¼‰
     * @return è§£å¯†åŽçš„å—èŠ‚ç 
     */
    private static byte[] decrypt(byte[] buffer, String key) {
        byte[] result = null;
        try {
            IvParameterSpec IVSpec = IvGenerator(DEFAULT_IV);
            Cipher cipher = Cipher.getInstance(ALGORITHM +"/CBC/PKCS5Padding");
            cipher.init(Cipher.DECRYPT_MODE, genKey(key), IVSpec);
            byte[] temp = Base64Util.decodeToStream(buffer);
            result = cipher.doFinal(temp);
        } catch (Exception e) {
            sysLogger.error("Des3Util.decrypt", e);
        }
        return result;
    }

    /**
     * åŠ å¯†String æ˜Žæ–‡è¾“å…¥å¯†æ–‡è¾“å‡º
     * @param str å¾…åŠ å¯†çš„æ˜Žæ–‡
     * @param key å¯†é’¥ï¼ˆkeyé•¿åº¦å¿…é¡» å¤§äºŽç‰äºŽ 24ï¼‰
     * @return åŠ å¯†åŽçš„å—ç¬¦ä¸²
     */
    public static String encrypt(String str, String key) throws Exception {
        byte[] buffer = str.getBytes(Charset.forName(DEFAULT_ENCODING));
        byte[] result = encrypt(buffer, key);
        return new String(result);
    }
    /**
     * è§£å¯†String ä»¥å¯†æ–‡è¾“å…¥æ˜Žæ–‡è¾“å‡º
     * @param str éœ€è¦è§£å¯†çš„å—ç¬¦ä¸²
     * @param key å¯†é’¥ï¼ˆkeyé•¿åº¦å¿…é¡» å¤§äºŽç‰äºŽ 24ï¼‰
     * @return è§£å¯†åŽçš„å—ç¬¦ä¸²
     */
    public static String decrypt(String str, String key) {
        byte[] buffer = str.getBytes(Charset.forName(DEFAULT_ENCODING));
        byte[] result = decrypt(buffer, key);
        return new String(result).trim();
    }

    /**
     * åŠ å¯†String æ˜Žæ–‡è¾“å…¥å¯†æ–‡è¾“å‡º
     * @param str å¾…åŠ å¯†çš„æ˜Žæ–‡
     * @return åŠ å¯†åŽçš„å—ç¬¦ä¸²
     */
    public static String encrypt(String str) throws Exception {
        return encrypt(str, DEFAULT_KEY);
    }
    /**
     * è§£å¯†String ä»¥å¯†æ–‡è¾“å…¥æ˜Žæ–‡è¾“å‡º
     * @param str éœ€è¦è§£å¯†çš„å—ç¬¦ä¸²
     * @return è§£å¯†åŽçš„å—ç¬¦ä¸²
     */
    public static String decrypt(String str) {
        return decrypt(str, DEFAULT_KEY);
    }
}