# 1. django 환경 불러오기

In [20]:
import os
import django
django.setup()
from otpass.models import *

# 비동기 컨텍스트에서는 제한되는게 있음
os.environ.setdefault('DJANGO_SETTINGS_MODULE', 'rest.settings')
os.environ["DJANGO_ALLOW_ASYNC_UNSAFE"] = "true"

# 2. rsa 키 생성하기

In [33]:
from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import rsa, padding
from cryptography.hazmat.primitives import hashes
import base64

def generate_rsa_key_pair():
    # RSA 키 쌍 생성
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=2048,
        backend=default_backend()
    )
    
    # 개인 키를 PEM 포맷으로 직렬화
    private_pem = private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.PKCS8,
        encryption_algorithm=serialization.NoEncryption()
    )

    # 공개 키를 PEM 포맷으로 직렬화
    public_pem = private_key.public_key().public_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PublicFormat.SubjectPublicKeyInfo
    )
    
    return public_pem.decode('utf-8'), private_pem.decode('utf-8')


In [7]:
pubkey, prikey = generate_rsa_key_pair()

In [8]:
type(pubkey)

str

In [9]:
pubkey

'-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2nf07b/mgfo1G8XuvuM\nRHYuod3JeARvfUvH0CUgs+tjqeUezLbzsOCMtZUTehLwBr3NsAso4Zc0nN2SA2zH\ngxjM4Xf48zTuXhLkFzz9PWrxSGPPzwjA0dOWr9l3LREZmF+EeMg8ZWJNlwLbIkoX\nCQd5g/d7iRa30370PLhwE9omOSguV4DV6KN+GkTkb/2lYeMalqhbDYWAcbZxJw6M\nSry34mptIVZRxkRhCVXvveXzo3l06Ckt5Ptc8xqvrOYeaehZVfrABj6GGx9fOA6v\nryYexA2JeCwcxjJP4XW4bd1JPuIDvkk1btcmK59f37WwzVcAcsbnFFJoQe/nAiVV\nSwIDAQAB\n-----END PUBLIC KEY-----\n'

In [10]:
prikey

'-----BEGIN PRIVATE KEY-----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\nSMGH0B32PDUMW5zT7EpHpt+F9wKBgQDBJxyFHU4VcjKYT4

# 3. DB에 키 저장

In [17]:
# keystore_inst = KeyStore(
#     name = "default_key",
#     pubkey = pubkey,
#     prikey = prikey,
# )

In [21]:
# keystore_inst.save()

# 4. 저장된 키 불러오기

In [22]:
rsa_key_inst = KeyStore.objects.get(name='default_key')

In [23]:
pubkey = rsa_key_inst.pubkey
prikey = rsa_key_inst.prikey
print(pubkey[:20], '\n', prikey[:20])

-----BEGIN PUBLIC KE 
 -----BEGIN PRIVATE K


# 5. 불러온 키값으로 키객체 생성하기

In [24]:
# PEM 형식의 키를 PrivateKey 및 PublicKey 객체로 변환
prikey_inst = serialization.load_pem_private_key(
    prikey.encode('utf-8'),
    password=None,
    backend=default_backend()
)

pubkey_inst = serialization.load_pem_public_key(
    pubkey.encode('utf-8'),
    backend=default_backend()
)



# 6. 암호화 하기

In [29]:
# 변환된 공개키를 사용하여 메시지를 암호화
message = "한우투쁠 등심스테이크 먹고싶다".encode('utf-8')
encrypted_message = pubkey_inst.encrypt(
    message,
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)

In [30]:
print("Encrypted Message:", encrypted_message)

Encrypted Message: b"B`\xbd&d|\x17U\xf4\xf3\x83X\xfe-%g\xfcB\xe2\x9dH\xe8\xe2b\xe9C><s\xb3`\x80P\xb22\xc2\x93\xd7$\r)YB('\xb7\xa1\x89\xfc\xa6\xbb#\xaa\xebD\xbd\xf1\xec\xad\x87i\xf2N\xf0mHq\xc6\xa9\x08fK.}A\x07W\xde\xc3\xe2\xd9\x1cP\xa0|]\n\x0f\x1e\xb7\x8c\x9a\xf2\xac\x9fU2\x9f\xf8\xd5\xe9(~\xdc\xb7\t\xba\xc3uK\x96-y\xf6M\x04\xdeN\x15;\xcd\xe8\xe5\xb2a\xe8;O\xa7\xb9\xfa\xe0\x88\xad\xfa\\\x8b\xcc\x12:\xfb\x8b\xeb\xa9k<jB@\x90=)2\xe7#SB\xce\xb2\xfa`\x83\x06n\xef\xfd\xc3\xd4\x86\xb0\x84\xb0\x91\xc6\xf7W&\x86Z\xe5\xaf\xc0\x87\xc0s\x85\xb6\xefI\x07\xbd\x80aZ\xb3c\xf3\x14\xa5\x1de\xec\xecl\xc62zG\xd3|\xe2\x89\xb2X\x8f\xe7\x7f(5\xc8\x12\xf3\xedR\xe4\x17\x8f\xa4{\xac\x1a1\xf8\xf8\x0b,%\xc6Z\x0e\x12\x19;\xbf\x9ck&H\xd9y\xb5a\x10\xbc\xb6\x82"


In [34]:
# 암호화된 메시지를 Base64로 인코딩
base64_encrypted = base64.b64encode(encrypted_message)
print("Base64 Encoded Encrypted Message:", base64_encrypted.decode('utf-8'))

Base64 Encoded Encrypted Message: QmC9JmR8F1X084NY/i0lZ/xC4p1I6OJi6UM+PHOzYIBQsjLCk9ckDSlZQignt6GJ/Ka7I6rrRL3x7K2HafJO8G1IccapCGZLLn1BB1few+LZHFCgfF0KDx63jJryrJ9VMp/41ekofty3CbrDdUuWLXn2TQTeThU7zejlsmHoO0+nufrgiK36XIvMEjr7i+upazxqQkCQPSky5yNTQs6y+mCDBm7v/cPUhrCEsJHG91cmhlrlr8CHwHOFtu9JB72AYVqzY/MUpR1l7OxsxjJ6R9N84omyWI/nfyg1yBLz7VLkF4+ke6waMfj4CywlxloOEhk7v5xrJkjZebVhELy2gg==


# 7. 복호화하기

In [36]:
# Base64 디코딩 후 변환된 개인키를 사용하여 암호화된 메시지를 복호화
decrypted_message = prikey_inst.decrypt(
    base64.b64decode(base64_encrypted),
    padding.OAEP(
        mgf=padding.MGF1(algorithm=hashes.SHA256()),
        algorithm=hashes.SHA256(),
        label=None
    )
)

print("Decrypted Message:", decrypted_message.decode('utf-8'))

Decrypted Message: 한우투쁠 등심스테이크 먹고싶다
