RSA encryption and decryption in Mini Program because the source code can be obtained by a third party, that is, the key will also be leaked, how to solve this problem.

how to securely implement RSA encryption and decryption in Mini Program?

forget where to see an article, through the simulator and root permissions to get WeChat Mini Programs"s source file. If you want to complete the RSA encryption and decryption in WeChat Mini Programs, you have to store the key file locally, which leads to the disclosure of the key.

Rsa encryption javascript WeChat-Mini-Programs

Mar.28,2021

both public and private keys exist at the front end?
you are really a programming genius.
and Mini Program's front-end code is not root, but there is a way to get it

generally speaking, RSA encryption and decryption requires two parties. One party encrypts it with the public key and the other decrypts it with the private key. Are you going to encrypt or decrypt in Mini Program? What's the point if both encryption and decryption are there?

can you specify the specific requirements?

the client puts public key , and the server puts private key .

the response data of the server is encrypted with the private key of the server, and Mini Program is decrypted with the public key.
the data submitted by Mini Program is encrypted with Mini Program public key and decrypted by the server with private key.

if you say that people can encrypt and decrypt the request / response even if they get your public key, there is no way. But it can prevent most people.

Previous: Java calls webservice unresponsive, is it appropriate to use thread.stop to terminate the thread?

Next: What is the maximum number of physical machines that a redis cluster can support?