Golang 框架中的数据加密与保护指南

package main

import (
    "crypto/aes"
    "crypto/cipher"
    "crypto/rand"
    "fmt"
    "io"
)

func main() {
    key := make([]byte, 32) // 32 字节的 AES 密钥
    plaintext := "敏感数据"

    block, err := aes.NewCipher(key)
    if err != nil {
        // 处理错误
    }

    ciphertext := make([]byte, len(plaintext))
    iv := make([]byte, aes.BlockSize) // 初始化向量
    _, err = io.ReadFull(rand.Reader, iv) // 生成随机初始化向量
    if err != nil {
        // 处理错误
    }

    stream := cipher.NewCTR(block, iv)
    stream.XORKeyStream(ciphertext, []byte(plaintext))

    fmt.Println("加密后的文本：", ciphertext)
}

// 客户端配置
package main

import (
    "crypto/tls"
    "net/http"
)

func main() {
    tr := &http.Transport{
        TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
    }
    client := &http.Client{Transport: tr}

    resp, err := client.Get("https://example.com")
    if err != nil {
        // 处理错误
    }
    _ = resp // 使用响应
}

// user.go
type User struct {
    ID       uint64
    Password string `gorm:"type:varchar(255);not null"`
}

// service.go
func (s *userService) CreateUser(ctx context.Context, user *model.User) error {
    hashedPassword, err := bcrypt.GenerateFromPassword([]byte(user.Password), bcrypt.DefaultCost)
    if err != nil {
        return err
    }

    user.Password = string(hashedPassword)
    return s.db.Create(user).Error
}