Edi Yanto (何 萬 新)

Securing PDF Output on XML Publisher

Posted on: January 24, 2009


Worked Example I – Securing a PDF output
You can now embed any of the XML Publisher properties into your RTF template <<reference to property lists>> These would then be resolved at runtime by the XML Publisher engine; you can either use hard coded values or embed the values inside the incoming XML data.

If you wanted to secure PDF output generated from a template you can use the XML Publisher pdf security properties and obtain the password value from the incoming XML data.

To add an XML Publisher property to a template use the Properties dialog (File -> Properties) :

xdo-pdf-security

picture 1: xdo-pdf-security

xdo-pdf-open-password

picture 2: xdo-pdf-open-password

The XML Publisher properties need to have ‘xdo-‘ as a prefix to their regular names so ‘pdf-open-password’ becomes ‘xdo-pdf-open-password’. Just add the XML Publisher properties and their value to the document using the dialog. If you want to reference a data element in the XML, a password for instance then use the curly braces in enclose the path to the XML element.

Worked Example II – Securing a PDF output

Lets assume that the XML data you are using will contain a specific password that needs to be used to secure the output document. Again we can use the document properties to set the PDF security password and reference a value in the XML. Assuming the following XML data:

<EY>

 <security>true</security>

<password>welcome</password>

<EY_DETAILS>

..

<EY>

In the properties dialog we would enter two properties:

Name : xdo-pdf-security – this property sets whether the security feature is enabled or not

Type :Text

Value :{/EY/security}

Name : xdo-pdf-open-password – this property sets the password

Type :Text

Value :{/EY/password}

Storing the password in the XML data could be a security problem if the XML is going to persist in the system for any length of time. To avoid this you could achieve the same using a template parameter value that is generated and passed into the template at runtime. Assuming your parameters were called ‘PDFSec’ and ‘PDFPWD’ you would enter the following in the properties dialog:

Name : xdo-pdf-security – this property sets whether the security feature is enabled or not

Type :Text

Value :{$PDFSec}

Name : xdo-pdf-open-password – this property sets the password

Type :Text

Value :{$PDFPWD}

Both of these methods would then secure the output PDF document with a password that would only be know to the user.

9 Responses to "Securing PDF Output on XML Publisher"

Great site, though I would love to see some more media! – Great post anyway, Cheers!

Like

I ahve tried to do the steps as proposed. System sends the report by bursting and when I open the PDF file, it opens without asking password

Like

Hi Karvannan,

Which step did you try? example1? have you tried to generate this PDF output file from concurrent request submission?
I have tried many times from this article and everything is ok, have you set the xdo-pdf-security to true?
can you send me the rtf file to my gmail (edi.y4nto@gmail.com)?

Thanks,
Edi Yanto

Like

Dear Edi,
Thanks for your response.
I have used xdo.cfg configuration for bursting secured pdf file. Now when i open the pdf file send by bursting, it is asking for password (which i hard coded in the xdo.cfg file) and it opens.

Now I need your advise,how to set the dynamic password for Bursting pdf file.

Thanks and Regards

Karvannan .

Like

Hi Karvannan,

You didn’t answer my questions before, I think if you follow the steps in this article you also can generate the PDF report with password.
In this article you can set the password dynamic on XML file but has security problem, please read it again.

Thanks,
Edi Yanto

Like

Dear Edi Yanto,
Thanks for response.

I have tried the proposed solution to set the dynamic password in XML and it worked fine. When opening the pdf document, it is asking for password and the dynamic password is working fine.

My requirement is to generate the payslip for all employees and send it to employees by bursting with dynamic password.I am not able to set dynamic password for the file send by bursting.

Like

Hi Karvannan,

Did you mean the proposed solution worked fine but not in bursting case? If No, I think it’s not problem. Did you generate the payslip to XML file with each employee’s password? If yes, you also can bursting the file with this dynamic password which already write in the XML file.

Thanks,
Edi Yanto

Like

hi Edi , can i get that password protected pdf through concurent program submission or rtf

Like

Hi venkat,

Yes, you can do it, try to do the steps as proposed.

Thanks,
Edi Yanto

Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Enter your email address to follow this blog and receive notifications of new posts by email.

Join 1,368 other followers


Edi Yanto
Oracle Applications Technical Consultant
View Edi Yanto's profile on LinkedIn

My Certifications






Follow me on Twitter

Archives

January 2009
M T W T F S S
« Dec   Feb »
 1234
567891011
12131415161718
19202122232425
262728293031  

Visitors

Categories

Blog Stats

  • 140,585 hits

Users Online

web counter

Pages

%d bloggers like this: