Criptografia e Seguranca
O PDF Oxide suporta criptografia de PDFs com senhas e permissões usando algoritmos padrão da indústria. Você pode definir uma senha de usuario (necessaria para abrir o documento), uma senha de proprietario (necessaria para acesso completo) e permissões granulares controlando impressao, copia e modificacao.
Início Rápido: Save with Criptografia
Python
from pdf_oxide import PdfDocument
doc = PdfDocument("input.pdf")
doc.set_title("Confidential Report")
# Encrypt with user and owner passwords
doc.save_encrypted("protected.pdf", "user123", "owner456")
WASM
import { WasmPdfDocument } from "pdf-oxide-wasm";
const doc = new WasmPdfDocument(bytes);
doc.setTitle("Confidential Report");
// Encrypt with user and owner passwords (all permissions enabled)
const output = doc.saveEncryptedToBytes(
"user123", "owner456", true, true, true, true
);
doc.free();
Rust
use pdf_oxide::api::Pdf;
let mut doc = Pdf::open("input.pdf")?;
// Simple encryption with user and owner passwords
doc.save_encrypted("protected.pdf", "user123", "owner456")?;
Criptografia com Permissões Personalizadas
Python
O método save_encrypted aceita flags de permissão como argumentos nomeados.
from pdf_oxide import PdfDocument
doc = PdfDocument("input.pdf")
# View-only: no printing, copying, or modifying
doc.save_encrypted(
"readonly.pdf",
"viewpass",
"adminpass",
allow_print=False,
allow_copy=False,
allow_modify=False,
allow_annotate=False,
)
# Allow only printing
doc.save_encrypted(
"print-only.pdf",
"", # No open password required
"adminpass",
allow_print=True,
allow_copy=False,
allow_modify=False,
allow_annotate=False,
)
Python save_encrypted Parametros
| Parâmetro | Tipo | Padrão | Descrição |
|---|---|---|---|
path |
str |
required | Output file path |
user_password |
str |
required | Password to open (empty = no open password) |
owner_password |
str |
None |
Full-access password (defaults to user password) |
allow_print |
bool |
True |
Permitir impressão |
allow_copy |
bool |
True |
Permitir cópia text/graphics |
allow_modify |
bool |
True |
Allow modifying the document |
allow_annotate |
bool |
True |
Allow adding annotations |
WASM
import { WasmPdfDocument } from "pdf-oxide-wasm";
const doc = new WasmPdfDocument(bytes);
// View-only: no printing, copying, or modifying
const readonly = doc.saveEncryptedToBytes(
"viewpass", "adminpass", false, false, false, false
);
// Allow only printing (empty user password = no open password)
const printOnly = doc.saveEncryptedToBytes(
"", "adminpass", true, false, false, false
);
doc.free();
Rust
Para complete control over encryption settings, use CriptografiaConfig and SaveOptions.
use pdf_oxide::api::Pdf;
use pdf_oxide::editor::{
CriptografiaConfig, CriptografiaAlgorithm, Permissions, SaveOptions,
};
let mut doc = Pdf::open("input.pdf")?;
// Build permissions
let mut perms = Permissions::read_only();
perms.print = true; // Permitir impressão only
// Build encryption config
let config = CriptografiaConfig::new("user123", "owner456")
.with_algorithm(CriptografiaAlgorithm::Aes256)
.with_permissions(perms);
// Save with encryption
doc.save_with_encryption("protected.pdf", config)?;
CriptografiaConfig
A struct CriptografiaConfig controla todos os parâmetros de criptografia.
use pdf_oxide::editor::{CriptografiaConfig, CriptografiaAlgorithm, Permissions};
let config = CriptografiaConfig {
user_password: "user123".to_string(),
owner_password: "owner456".to_string(),
algorithm: CriptografiaAlgorithm::Aes256,
permissions: Permissions::all(),
};
Or use the builder pattern:
let config = CriptografiaConfig::new("user123", "owner456")
.with_algorithm(CriptografiaAlgorithm::Aes128)
.with_permissions(Permissions::read_only());
CriptografiaConfig Fields
| Campo | Tipo | Descrição |
|---|---|---|
user_password |
String |
Password required to open the document |
owner_password |
String |
Password for full access and changing security |
algorithm |
CriptografiaAlgorithm |
Criptografia algorithm to use |
permissions |
Permissions |
Access control flags |
Criptografia Algorithms
| Algorithm | Descrição |
|---|---|
CriptografiaAlgorithm::Aes256 |
AES-256 (strongest, recommended) |
CriptografiaAlgorithm::Aes128 |
AES-128 |
CriptografiaAlgorithm::Rc4_128 |
RC4 128-bit (legacy compatibility) |
CriptografiaAlgorithm::Rc4_40 |
RC4 40-bit (legacy, weak) |
AES-256 is the default when using save_encrypted() in Python or the Pdf API.
Permissions
A struct Permissions controla quais operações são permitidas quando um documento é aberto com a senha de usuário.
use pdf_oxide::editor::Permissions;
// Allow everything
let all = Permissions::all();
// Restrict everything
let readonly = Permissions::read_only();
Permissions Fields
| Field | Type | Padrão (all) | Padrão (read_only) | Descrição |
|---|---|---|---|---|
print |
bool |
true |
false |
Permitir impressão |
print_high_quality |
bool |
true |
false |
Allow high-quality printing |
modify |
bool |
true |
false |
Allow modifying content |
copy |
bool |
true |
false |
Permitir cópia text/graphics |
annotate |
bool |
true |
false |
Allow adding annotations |
fill_forms |
bool |
true |
false |
Allow filling form fields |
accessibility |
bool |
true |
true |
Allow accessibility extraction |
assemble |
bool |
true |
false |
Allow página assembly operations |
Custom Permissions
let mut perms = Permissions::read_only();
perms.print = true; // Permitir impressão
perms.fill_forms = true; // Allow filling forms
perms.accessibility = true; // Always allow for compliance
SaveOptions
Use SaveOptions for full control over how the document is written.
use pdf_oxide::editor::{SaveOptions, CriptografiaConfig};
// Full rewrite (default)
let opts = SaveOptions::full_rewrite();
// Incremental update (faster, preserves structure)
let opts = SaveOptions::incremental();
// With encryption
let config = CriptografiaConfig::new("user", "owner");
let opts = SaveOptions::with_encryption(config);
Abrindo PDFs Criptografados
Python
Pass the password when opening the document.
from pdf_oxide import PdfDocument
doc = PdfDocument("protected.pdf", password="user123")
text = doc.extract_text(0)
print(text)
Rust
use pdf_oxide::PdfDocument;
let doc = PdfDocument::open_with_password("protected.pdf", "user123")?;
let text = doc.extract_text(0)?;
println!("{}", text);
Complete Criptografia Workflow
Python
from pdf_oxide import PdfDocument
# Open and modify
doc = PdfDocument("report.pdf")
doc.set_title("Confidential Report")
doc.set_author("Finance Team")
# Save with view-only restrictions
doc.save_encrypted(
"report-protected.pdf",
"", # No password to open
"admin2025", # Senha do proprietário for full access
allow_print=True,
allow_copy=False,
allow_modify=False,
)
WASM
import { WasmPdfDocument } from "pdf-oxide-wasm";
const doc = new WasmPdfDocument(bytes);
doc.setTitle("Confidential Report");
doc.setAuthor("Finance Team");
// Save with view-only restrictions (no open password, print allowed)
const output = doc.saveEncryptedToBytes(
"", "admin2025", true, false, false, false
);
doc.free();
Rust
use pdf_oxide::api::Pdf;
use pdf_oxide::editor::{
DocumentEditor, EditableDocument,
CriptografiaConfig, CriptografiaAlgorithm, Permissions, SaveOptions,
};
// Open and modify
let mut doc = Pdf::open("report.pdf")?;
{
let editor = doc.editor().unwrap();
editor.set_title("Confidential Report");
editor.set_author("Finance Team");
}
// Configure encryption
let permissions = Permissions {
print: true,
print_high_quality: true,
modify: false,
copy: false,
annotate: false,
fill_forms: true,
accessibility: true,
assemble: false,
};
let config = CriptografiaConfig::new("", "admin2025")
.with_algorithm(CriptografiaAlgorithm::Aes256)
.with_permissions(permissions);
doc.save_with_encryption("report-protected.pdf", config)?;
Re-encrypt with Different Settings
Rust
use pdf_oxide::editor::{DocumentEditor, EditableDocument, CriptografiaConfig, SaveOptions};
// Open with current password
let mut editor = DocumentEditor::open("old-protected.pdf")?;
// Save with new encryption
let config = CriptografiaConfig::new("newuser", "newowner");
let options = SaveOptions::with_encryption(config);
editor.save_with_options("re-encrypted.pdf", options)?;
Referência Completa da API
Pdf Methods
| Method | Retorna | Descrição |
|---|---|---|
save_encrypted(path, user_pw, owner_pw) |
Result<()> |
Save with AES-256 and full permissions |
save_with_encryption(path, config) |
Result<()> |
Save with custom encryption config |
DocumentEditor / EditableDocument Methods
| Method | Retorna | Descrição |
|---|---|---|
save(path) |
Result<()> |
Save with full rewrite (no encryption) |
save_with_options(path, options) |
Result<()> |
Save with custom options |
Configuração Types
| Type | Descrição |
|---|---|
CriptografiaConfig |
User/owner passwords, algorithm, permissions |
CriptografiaAlgorithm |
Aes256, Aes128, Rc4_128, Rc4_40 |
Permissions |
Fine-grained access control flags |
SaveOptions |
Full rewrite, incremental, or encrypted save |
Páginas Relacionadas
- Editing Overview – opening, metadata, and save workflow
- Form Field Editing – restrict form editing with permissions
- Redaction – redact content before encrypting
- Page Operations – prepare pages before final encryption