app: Secp256k1Signer

linux-china · linux-china · commit 0ab51864eba1 · 2025-10-03T10:17:46.000+08:00
diff --git a/dotenvx-spring-boot/src/main/java/org/mvnsearch/dotenvx/jwt/Secp256k1Signer.java b/dotenvx-spring-boot/src/main/java/org/mvnsearch/dotenvx/jwt/Secp256k1Signer.java
@@ -0,0 +1,49 @@
+package org.mvnsearch.dotenvx.jwt;
+
+import com.nimbusds.jose.crypto.bc.BouncyCastleProviderSingleton;
+import org.bouncycastle.jce.provider.BouncyCastleProvider;
+
+import java.security.*;
+
+
+/**
+ * secp256k1 signer
+ */
+public class Secp256k1Signer {
+    static {
+        if (Security.getProvider(BouncyCastleProvider.PROVIDER_NAME) == null) {
+            Security.addProvider(BouncyCastleProviderSingleton.getInstance());
+        }
+    }
+
+    /**
+     * sign data with SHA256withECDSA
+     *
+     * @param data       data bytes
+     * @param privateKey private key
+     * @return signature bytes
+     */
+    public static byte[] signData(byte[] data, PrivateKey privateKey)
+            throws NoSuchAlgorithmException, NoSuchProviderException, InvalidKeyException, SignatureException {
+        Signature signature = Signature.getInstance("SHA256withECDSA", "BC");
+        signature.initSign(privateKey);
+        signature.update(data);
+        return signature.sign();
+    }
+
+    /**
+     * verify signature with  with SHA256withECDSA
+     *
+     * @param data           data
+     * @param signatureBytes signature bytes
+     * @param publicKey      public key
+     * @return verified result
+     */
+    public static boolean verifySignature(byte[] data, byte[] signatureBytes, PublicKey publicKey)
+            throws NoSuchAlgorithmException, NoSuchProviderException, InvalidKeyException, SignatureException {
+        Signature signature = Signature.getInstance("SHA256withECDSA", "BC");
+        signature.initVerify(publicKey);
+        signature.update(data);
+        return signature.verify(signatureBytes);
+    }
+}
