[ENH] Add option to auto encrypt password based on python syntax

2025-02-16 16:30:38 +02:00 · 2020-12-26 15:06:58 +07:00
parent f3348c8d3d
commit f1af8c100e
10 changed files with 143 additions and 69 deletions
--- a/report_qweb_encrypt/models/ir_actions_report.py
+++ b/report_qweb_encrypt/models/ir_actions_report.py
@@ -1,9 +1,13 @@
 # Copyright 2020 Creu Blanca
+# Copyright 2020 Ecosoft Co., Ltd.
 # License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl).
-
-from odoo import fields, models
+import time
 import logging
+from odoo import fields, models, _
 from io import BytesIO
+from odoo.tools.safe_eval import safe_eval
+from odoo.exceptions import ValidationError
+

 _logger = logging.getLogger(__name__)
 try:
@@ -13,21 +17,56 @@ except ImportError as err:


 class IrActionsReport(models.Model):
+    _inherit = "ir.actions.report"

-    _inherit = 'ir.actions.report'
-
-    encrypt = fields.Boolean()
+    encrypt = fields.Selection(
+        [("manual", "Manual Input Password"),
+         ("auto", "Auto Generated Password")],
+        string="Encryption",
+        help="* Manual Input Password: allow user to key in password on the fly. "
+        "This option available only on document print action.\n"
+        "* Auto Generated Password: system will auto encrypt password when PDF "
+        "created, based on provided python syntax."
+    )
+    encrypt_password = fields.Char(
+        help="Python code syntax to gnerate password.",
+    )

    def render_qweb_pdf(self, res_ids=None, data=None):
-        document, type = super(IrActionsReport, self).render_qweb_pdf(
+        document, ttype = super(IrActionsReport, self).render_qweb_pdf(
            res_ids=res_ids, data=data)
-        if self.encrypt and self.env.context.get('encrypt_password', False):
-            output_pdf = PdfFileWriter()
-            in_buff = BytesIO(document)
-            pdf = PdfFileReader(in_buff)
-            output_pdf.appendPagesFromReader(pdf)
-            output_pdf.encrypt(self.env.context.get('encrypt_password'))
-            buff = BytesIO()
-            output_pdf.write(buff)
-            document = buff.getvalue()
-        return document, type
+        password = self._get_pdf_password(res_ids[:1])
+        document = self._encrypt_pdf(document, password)
+        return document, ttype
+
+    def _get_pdf_password(self, res_id):
+        encrypt_password = False
+        if self.encrypt == "manual":
+            # If use document print action, report_download() is called,
+            # but that can't pass context (encrypt_password) here.
+            # As such, file will be encrypted by report_download() again.
+            # --
+            # Following is used just in case when context is passed in.
+            encrypt_password = self._context.get("encrypt_password", False)
+        elif self.encrypt == "auto" and self.encrypt_password:
+            obj = self.env[self.model].browse(res_id)
+            try:
+                encrypt_password = safe_eval(self.encrypt_password,
+                                             {'object': obj, 'time': time})
+            except:
+                raise ValidationError(
+                    _("Python code used for encryption password is invalid.\n%s")
+                    % self.encrypt_password)
+        return encrypt_password
+
+    def _encrypt_pdf(self, data, password):
+        if not password:
+            return data
+        output_pdf = PdfFileWriter()
+        in_buff = BytesIO(data)
+        pdf = PdfFileReader(in_buff)
+        output_pdf.appendPagesFromReader(pdf)
+        output_pdf.encrypt(password)
+        buff = BytesIO()
+        output_pdf.write(buff)
+        return buff.getvalue()