qpdf_ruby 0.1.0 → 0.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c5f6da89731f271f230b6784f82f01bb4f1dfe4060d4caae6d956fa73d8fc13e
-  data.tar.gz: c3d2e9dc8baf1975acbca704b8b76dab210c0f959ce78b8655d1c3c295585d10
+  metadata.gz: b5e34005af4a00f153fe6597426be27d03e047c9fce46af4e669c22138e0b726
+  data.tar.gz: 95fb970cb38489fd18b2d8aee4e0f48e843f9b14f45a4806ea7b5b1e6f79045c
 SHA512:
-  metadata.gz: c850b48c57e89e431b3d7340b1cd4819f28887402cdc03af7e108533249a4e8742351732c22217b0fed011e4799b9b00268219ec2b1ea17d6576ef50125ffbbb
-  data.tar.gz: 60f89a46753d7caa4d70a3832c2dc68bd01470528c5c6c6939df10920608f3e451ed7c11d42874fd6944df1a06bdd4847020e1289fb1b07c100fc502cc48e5ce
+  metadata.gz: 6f1e65790f45ab85cb633883c4f7d8597d8271e15aedf6ef670e58491f0658a0bf53370a232abdda370088bc13594445e292d7e73fda1b34e9fa460a15ae0eef
+  data.tar.gz: be16ec8f1fde0eb5c022a39b29588429319d6aa553fdc368ee90f6a409659a0d7d0a30eba212683e4f5640eb961c127bef46d2f7f4dded9879ab58195c0df67e

data/CHANGELOG.md

@@ -1,5 +1,28 @@
-## [Unreleased]
+<!-- generated by git-cliff start -->
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+[unreleased]: https://github.com///compare/v0.1.1..HEAD
+
+<!-- generated by git-cliff -->
+
+##  [0.1.1] - 2025-06-30
+
+### 🚀 Features
+
+- Add PDF encryption support
+
+
 
 ## [0.1.0] - 2025-06-11
 
 - Initial release
+
+### 🔄 Released
+
+- [unreleased](https://github.com/dieter-medium/bidi2pdf/compare/v0.1.1..HEAD)
+- [0.1.1](https://github.com/dieter-medium/bidi2pdf/compare/v0.1.0..v0.1.1) 

data/cliff.toml

@@ -0,0 +1,138 @@
+# git-cliff ~ configuration file
+# https://git-cliff.org/docs/configuration
+
+[changelog]
+# template for the changelog header
+header = """
+<!-- generated by git-cliff start -->
+# Changelog\n
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).\n
+"""
+# template for the changelog body
+# https://keats.github.io/tera/docs/#introduction
+body = """
+{%- macro remote_url() -%}
+  https://github.com/{{ remote.github.owner }}/{{ remote.github.repo }}
+{%- endmacro -%}
+
+{% if version -%}
+    ## [{{ version | trim_start_matches(pat="v") }}] - {{ timestamp | date(format="%Y-%m-%d") }}
+{% else -%}
+    ## [Unreleased]
+{% endif -%}
+
+{% for group, commits in commits | group_by(attribute="group") %}
+    ### {{ group | upper_first }}
+    {%- for commit in commits %}
+        - {{ commit.message | split(pat="\n") | first | upper_first | trim }}\
+            {% if commit.remote.username %} by @{{ commit.remote.username }}{%- endif -%}
+            {% if commit.remote.pr_number %} in \
+            [#{{ commit.remote.pr_number }}]({{ self::remote_url() }}/pull/{{ commit.remote.pr_number }}) \
+            {%- endif -%}
+    {% endfor %}
+{% endfor %}
+
+{%- if github.contributors | filter(attribute="is_first_time", value=true) | length != 0 %}
+  ## New Contributors
+{%- endif -%}
+
+{% for contributor in github.contributors | filter(attribute="is_first_time", value=true) %}
+  * @{{ contributor.username }} made their first contribution
+    {%- if contributor.pr_number %} in \
+      [#{{ contributor.pr_number }}]({{ self::remote_url() }}/pull/{{ contributor.pr_number }}) \
+    {%- endif %}
+{%- endfor %}\n
+"""
+# template for the changelog footer
+footer = """
+{%- macro remote_url() -%}
+  https://github.com/{{ remote.github.owner }}/{{ remote.github.repo }}
+{%- endmacro -%}
+
+{% for release in releases -%}
+    {% if release.version -%}
+        {% if release.previous.version -%}
+            [{{ release.version | trim_start_matches(pat="v") }}]: \
+                {{ self::remote_url() }}/compare/{{ release.previous.version }}..{{ release.version }}
+        {% endif -%}
+    {% else -%}
+        [unreleased]: {{ self::remote_url() }}/compare/{{ release.previous.version }}..HEAD
+    {% endif -%}
+{% endfor %}
+<!-- generated by git-cliff end -->
+"""
+# remove the leading and trailing whitespace from the templates
+trim = true
+
+[git]
+# parse the commits based on https://www.conventionalcommits.org
+conventional_commits = true
+# filter out the commits that are not conventional
+filter_unconventional = false
+# regex for preprocessing the commit messages
+commit_preprocessors = [
+    # remove issue numbers from commits
+    { pattern = '\((\w+\s)?#([0-9]+)\)', replace = "" },
+]
+# regex for parsing and grouping commits
+commit_parsers = [
+    # ✅ Features (additions)
+    { message = "^feat(?:\\([^)]+\\))?!?:", group = "🚀 Added" },
+    { message = "^[aA]dd", group = "🚀 Added" },
+    { message = "^[sS]upport", group = "🚀 Added" },
+
+    # ❌ Removals
+    { message = "^[rR]emove", group = "🗑️ Removed" },
+    { message = "^[dD]elete", group = "🗑️ Removed" },
+
+    # 🐛 Fixes
+    { message = "^fix(?:\\([^)]+\\))?!?:", group = "🐛 Fixed" },
+    { message = "^[tT]est", group = "🐛 Fixed" },
+    { message = "^[fF]ix", group = "🐛 Fixed" },
+
+    # 🎨 Refactors
+    { message = "^refactor(?:\\([^)]+\\))?!?:", group = "🎨 Refactored" },
+
+    # ⚡️ Performance
+    { message = "^perf(?:\\([^)]+\\))?!?:", group = "⚡️ Performance" },
+
+    # 📝 Docs
+    { message = "^docs(?:\\([^)]+\\))?!?:", group = "📝 Docs" },
+
+    # 💄 Style (formatting, whitespace, etc.)
+    { message = "^style(?:\\([^)]+\\))?!?:", group = "💄 Style" },
+
+    # 🧪 Tests
+    { message = "^test(?:\\([^)]+\\))?!?:", group = "🧪 Tests" },
+
+    # 🔧 Build
+    { message = "^build(?:\\([^)]+\\))?!?:", group = "🔧 Build" },
+
+    # 🛠️ CI
+    { message = "^ci(?:\\([^)]+\\))?!?:", skip = true },
+
+    # 🧹 Chores (skip)
+    { message = "^chore\\(release\\): prepare for", skip = true },
+    { message = "^chore\\(deps.*\\)", skip = true },
+    { message = "^chore\\(pr\\)", skip = true },
+    { message = "^chore\\(pull\\)", skip = true },
+    { message = "^chore(?:\\([^)]+\\))?!?:", skip = true },
+    { message = "^\\s*chore", skip = true },
+
+    # ⏪ Reverts
+    { message = "^revert(?:\\([^)]+\\))?!?:", group = "⏪ Reverted" },
+
+    # 🌀 Catch-all (only if nothing else matched)
+    { message = "^.*", group = "🔄 Changed" }
+]
+
+
+# filter out the commits that are not matched by commit parsers
+filter_commits = false
+# sort the tags topologically
+topo_order = false
+# sort the commits inside sections by oldest/newest order
+sort_commits = "newest"

data/ext/qpdf_ruby/document_handle.cpp

@@ -1,17 +1,22 @@
+#define POINTERHOLDER_TRANSITION 1
+
 #include "document_handle.hpp"
 
 #include <qpdf/QPDFWriter.hh>
+#include <qpdf/QPDF.hh>
 #include <stdexcept>
 #include <system_error>
 #include <cerrno>
 
 using namespace qpdf_ruby;
 
-std::unique_ptr<DocumentHandle> DocumentHandle::open(const std::string& filename) {
+std::unique_ptr<DocumentHandle> DocumentHandle::open(const std::string& filename, std::string const& pwd) {
   auto qpdf = std::make_shared<QPDF>();
   try {
-    // Use empty password → owner & user pwd same.
-    qpdf->processFile(filename.c_str());
+    qpdf->processFile(filename.c_str(), pwd.empty() ? nullptr : pwd.c_str());
+  } catch (const QPDFExc& qex) {
+    throw std::runtime_error(std::string("qpdf_ruby: failed to open \"") + filename + "\": " + qex.what() +
+                             " (code: " + std::to_string(qex.getErrorCode()) + ")");
   } catch (const std::exception& ex) {
     throw std::runtime_error(std::string("qpdf_ruby: failed to open “") + filename + "”: " + ex.what());
   }
@@ -40,6 +45,7 @@ void DocumentHandle::write(const std::string& out_filename) {
     // honour original file’s extension-level features (linearized? encrypted? …)
     QPDFWriter w(*m_qpdf, out_filename.c_str());
     w.setStaticID(true);  // deterministic IDs – helps tests
+    setup_encryption(w);
     w.write();
   } catch (const std::exception& ex) {
     throw std::runtime_error(std::string("qpdf_ruby: failed to write “") + out_filename + "”: " + ex.what());
@@ -50,6 +56,9 @@ std::string DocumentHandle::write_to_memory() {
   try {
     QPDFWriter w(*m_qpdf, nullptr);
     w.setStaticID(true);
+
+    setup_encryption(w);
+
     w.setOutputMemory();
     w.write();
 
@@ -60,26 +69,62 @@ std::string DocumentHandle::write_to_memory() {
   }
 }
 
+void DocumentHandle::setup_encryption(QPDFWriter& w) const {
+  if (!m_encryption_requested) return;
+
+  switch (m_encrypt_R) {
+    case 4:
+      w.setR4EncryptionParametersInsecure(m_user_pw.c_str(), m_owner_pw.c_str(), m_encrypt_accessibility,
+                                          m_encrypt_allow_extract, m_encrypt_assemble, m_encrypt_annotate_and_form,
+                                          m_encrypt_form_filling, m_encrypt_allow_modify, m_encrypt_allow_print,
+                                          m_encrypt_encrypt_metadata, m_encrypt_use_aes);
+      break;
+    case 5:
+      w.setR5EncryptionParameters(m_user_pw.c_str(), m_owner_pw.c_str(), m_encrypt_accessibility,
+                                  m_encrypt_allow_extract, m_encrypt_assemble, m_encrypt_annotate_and_form,
+                                  m_encrypt_form_filling, m_encrypt_allow_modify, m_encrypt_allow_print,
+                                  m_encrypt_encrypt_metadata);
+      break;
+    case 6:
+      w.setR6EncryptionParameters(m_user_pw.c_str(), m_owner_pw.c_str(), m_encrypt_accessibility,
+                                  m_encrypt_allow_extract, m_encrypt_assemble, m_encrypt_annotate_and_form,
+                                  m_encrypt_form_filling, m_encrypt_allow_modify, m_encrypt_allow_print,
+                                  m_encrypt_encrypt_metadata);
+      break;
+    default:
+      throw std::runtime_error("Unsupported encryption revision (R): Only 4, 5, 6 are supported.");
+  }
+}
+
+void DocumentHandle::set_encryption(const std::string& user_pw, const std::string& owner_pw, int R,
+                                    qpdf_r3_print_e allow_print, bool allow_modify, bool allow_extract,
+                                    bool accessibility, bool assemble, bool annotate_and_form, bool form_filling,
+                                    bool encrypt_metadata, bool use_aes) {
+  m_user_pw = user_pw;
+  m_owner_pw = owner_pw;
+  m_encrypt_R = R;
+  m_encrypt_allow_print = allow_print;
+  m_encrypt_allow_modify = allow_modify;
+  m_encrypt_allow_extract = allow_extract;
+  m_encrypt_accessibility = accessibility;
+  m_encrypt_assemble = assemble;
+  m_encrypt_annotate_and_form = annotate_and_form;
+  m_encrypt_form_filling = form_filling;
+  m_encrypt_encrypt_metadata = encrypt_metadata;
+  m_encrypt_use_aes = use_aes;
+  m_encryption_requested = true;
+}
+
 // ------------------------- C bridge impl --------------------------------
 
 extern "C" {
-DocumentHandle* qpdf_ruby_open(const char* filename) {
-  try {
-    return DocumentHandle::open(filename).release();
-  } catch (const std::exception&) {
-    errno = EIO;
-    return nullptr;
-  }
+DocumentHandle* qpdf_ruby_open(const char* filename, char const* pwd) {
+  return DocumentHandle::open(filename, pwd ? pwd : "").release();
 }
 
 DocumentHandle* qpdf_ruby_open_memory(char const* desc, unsigned char const* buf, size_t len, char const* pwd) {
-  try {
-    std::vector<unsigned char> copy(buf, buf + len);  // simple ownership
-    return DocumentHandle::open_memory(desc, std::move(copy), pwd ? pwd : "").release();
-  } catch (...) {
-    errno = EIO;
-    return nullptr;
-  }
+  std::vector<unsigned char> copy(buf, buf + len);  // simple ownership
+  return DocumentHandle::open_memory(desc, std::move(copy), pwd ? pwd : "").release();
 }
 
 int qpdf_ruby_write(DocumentHandle* handle, const char* out_filename) {
@@ -87,13 +132,20 @@ int qpdf_ruby_write(DocumentHandle* handle, const char* out_filename) {
     errno = EBADF;
     return -1;
   }
-  try {
-    handle->write(out_filename);
-    return 0;
-  } catch (const std::exception&) {
-    errno = EIO;
-    return -1;
-  }
+
+  handle->write(out_filename);
+  return 0;
+}
+
+void qpdf_ruby_set_encryption(DocumentHandle* handle, const char* user_pw, const char* owner_pw, int R,
+                              qpdf_r3_print_e allow_print, int allow_modify, int allow_extract, int accessibility,
+                              int assemble, int annotate_and_form, int form_filling, int encrypt_metadata,
+                              int use_aes) {
+  if (!handle) return;
+
+  handle->set_encryption(std::string(user_pw ? user_pw : ""), std::string(owner_pw ? owner_pw : ""), R, allow_print,
+                         allow_modify != 0, allow_extract != 0, accessibility != 0, assemble != 0,
+                         annotate_and_form != 0, form_filling != 0, encrypt_metadata != 0, use_aes != 0);
 }
 
 void qpdf_ruby_close(DocumentHandle* handle) {

data/ext/qpdf_ruby/document_handle.hpp

@@ -1,8 +1,11 @@
 #pragma once
 
+#define POINTERHOLDER_TRANSITION 1
+
 #include <memory>
 #include <string>
 #include <qpdf/QPDF.hh>
+#include <qpdf/QPDFWriter.hh>
 
 namespace qpdf_ruby {
 
@@ -16,7 +19,7 @@ namespace qpdf_ruby {
 class DocumentHandle final {
  public:
   // ---- factory ----------------------------------------------------------
-  static std::unique_ptr<DocumentHandle> open(const std::string& filename);
+  static std::unique_ptr<DocumentHandle> open(const std::string& filename, std::string const& pwd);
   static std::unique_ptr<DocumentHandle> open_memory(std::string const& description, std::vector<unsigned char> data,
                                                      std::string const& password = "");
 
@@ -26,6 +29,12 @@ class DocumentHandle final {
 
   std::string write_to_memory();
 
+  void set_encryption(const std::string& user_pw, const std::string& owner_pw, int R, qpdf_r3_print_e allow_print,
+                      bool allow_modify, bool allow_extract, bool accessibility = true, bool assemble = true,
+                      bool annotate_and_form = true, bool form_filling = true, bool encrypt_metadata = true,
+                      bool use_aes = true);
+  void setup_encryption(QPDFWriter& w) const;
+
   /** Direct access for C++ helpers that need the raw QPDF. */
   QPDF& qpdf() { return *m_qpdf; }
   const QPDF& qpdf() const { return *m_qpdf; }
@@ -42,11 +51,26 @@ class DocumentHandle final {
 
   std::shared_ptr<QPDF> m_qpdf;
   std::vector<unsigned char> m_owned_buf;
+
+  // --- New encryption settings ---
+  bool m_encryption_requested = false;
+  std::string m_user_pw;
+  std::string m_owner_pw;
+  int m_encrypt_R = 4;
+  qpdf_r3_print_e m_encrypt_allow_print{qpdf_r3p_full};
+  bool m_encrypt_allow_modify = true;
+  bool m_encrypt_allow_extract = true;
+  bool m_encrypt_accessibility = true;
+  bool m_encrypt_assemble = true;
+  bool m_encrypt_annotate_and_form = true;
+  bool m_encrypt_form_filling = true;
+  bool m_encrypt_encrypt_metadata = true;
+  bool m_encrypt_use_aes = true;
 };
 
 extern "C" {
 /** Returns a freshly allocated handle or nullptr on error (see errno). */
-DocumentHandle* qpdf_ruby_open(const char* filename);
+DocumentHandle* qpdf_ruby_open(const char* filename, char const* pwd);
 
 DocumentHandle* qpdf_ruby_open_memory(char const* desc, unsigned char const* buf, size_t len, char const* pwd);
 
@@ -57,4 +81,10 @@ int qpdf_ruby_write(DocumentHandle* handle, const char* out_filename);
 void qpdf_ruby_close(DocumentHandle* handle);
 }
 
+void qpdf_ruby_set_encryption(struct DocumentHandle* handle, const char* user_pw, const char* owner_pw, int R,
+                              qpdf_r3_print_e allow_print,
+                              int allow_modify,  // bool as int (0/1)
+                              int allow_extract, int accessibility, int assemble, int annotate_and_form,
+                              int form_filling, int encrypt_metadata, int use_aes);
+
 }  // namespace qpdf_ruby

data/ext/qpdf_ruby/pdf_image_mapper.hpp

@@ -1,6 +1,8 @@
 // x_object_finder.hpp
 #pragma once
 
+#define POINTERHOLDER_TRANSITION 1
+
 #include <qpdf/QPDF.hh>
 #include <qpdf/QPDFPageDocumentHelper.hh>
 #include <qpdf/QPDFPageObjectHelper.hh>

data/ext/qpdf_ruby/pdf_struct_walker.hpp

@@ -2,6 +2,8 @@
 
 #pragma once
 
+#define POINTERHOLDER_TRANSITION 1
+
 #include <qpdf/QPDF.hh>
 #include <qpdf/QPDFWriter.hh>
 #include <qpdf/QPDFPageObjectHelper.hh>

data/ext/qpdf_ruby/qpdf_ruby.cpp

@@ -17,6 +17,7 @@
 
 VALUE rb_mQpdfRuby;
 VALUE rb_cDocument;
+VALUE rb_eQpdfRubyError;
 
 using namespace qpdf_ruby;
 
@@ -144,16 +145,35 @@ static void doc_free(void* ptr) { qpdf_ruby::qpdf_ruby_close(static_cast<qpdf_ru
 
 static VALUE doc_alloc(VALUE klass) { return Data_Wrap_Struct(klass, /* mark */ 0, doc_free, nullptr); }
 
-static VALUE doc_initialize(VALUE self, VALUE filename) {
+static VALUE doc_initialize(int argc, VALUE* argv, VALUE self) {
+  VALUE filename, password;
+
+  filename = Qnil;
+  password = Qnil;
+
+  rb_scan_args(argc, argv, "11", &filename, &password);  // 1 required, 1 optional
+
   Check_Type(filename, T_STRING);
-  DocumentHandle* h = qpdf_ruby::qpdf_ruby_open(StringValueCStr(filename));
-  if (!h) rb_sys_fail("qpdf_ruby_open");
-  DATA_PTR(self) = h;
+
+  const char* pw = "";
+  if (!NIL_P(password)) {
+    Check_Type(password, T_STRING);
+    pw = StringValueCStr(password);
+  }
+
+  try {
+    DocumentHandle* h = qpdf_ruby::qpdf_ruby_open(StringValueCStr(filename), pw);
+    if (!h) rb_sys_fail("qpdf_ruby_open");
+    DATA_PTR(self) = h;
+  } catch (const std::exception& e) {
+    rb_raise(rb_eQpdfRubyError, "%s", e.what());
+  }
 
   return self;
 }
 
 static VALUE doc_write(VALUE self, VALUE out_filename) {
+  Check_Type(out_filename, T_STRING);
   DocumentHandle* h;
   Data_Get_Struct(self, DocumentHandle, h);
   if (qpdf_ruby::qpdf_ruby_write(h, StringValueCStr(out_filename)) == -1) rb_sys_fail("qpdf_ruby_write");
@@ -163,16 +183,26 @@ static VALUE doc_write(VALUE self, VALUE out_filename) {
 
 VALUE qpdf_ruby_write_memory(DocumentHandle* h) {
   if (!h) rb_sys_fail("Bad handle");
-  std::string bytes = h->write_to_memory();
+  std::string bytes;
+
+  try {
+    bytes = h->write_to_memory();
+  } catch (const std::exception& e) {
+    rb_raise(rb_eQpdfRubyError, "%s", e.what());
+  }
   return rb_str_new(bytes.data(), bytes.size());
 }
 
 static VALUE doc_from_memory(VALUE klass, VALUE str, VALUE password) {
   Check_Type(str, T_STRING);
   Check_Type(password, T_STRING);
-
-  DocumentHandle* h = qpdf_ruby_open_memory("ruby-memory", reinterpret_cast<unsigned char const*>(RSTRING_PTR(str)),
-                                            RSTRING_LEN(str), StringValueCStr(password));
+  DocumentHandle* h;
+  try {
+    h = qpdf_ruby_open_memory("ruby-memory", reinterpret_cast<unsigned char const*>(RSTRING_PTR(str)), RSTRING_LEN(str),
+                              StringValueCStr(password));
+  } catch (const std::exception& e) {
+    rb_raise(rb_eQpdfRubyError, "%s", e.what());
+  }
 
   if (!h) rb_sys_fail("qpdf_ruby_open_memory");
 
@@ -186,13 +216,69 @@ static VALUE doc_to_memory(VALUE self) {
   return qpdf_ruby_write_memory(h);  // returns a Ruby ::String
 }
 
+VALUE rb_qpdf_doc_set_encryption(int argc, VALUE* argv, VALUE self) {
+  VALUE kwargs;
+  ID keys[12];
+  VALUE values[12] = {
+      rb_str_new_cstr(""),  // user_pw
+      rb_str_new_cstr(""),  // owner_pw
+      INT2NUM(4),           // encryption_revision
+      INT2NUM(1),           // allow_print
+      Qfalse,               // allow_modify
+      Qfalse,               // allow_extract
+      Qtrue,                // accessibility
+      Qfalse,               // assemble
+      Qfalse,               // annotate_and_form
+      Qfalse,               // form_filling
+      Qtrue,                // encrypt_metadata
+      Qtrue                 // use_aes
+  };
+
+  keys[0] = rb_intern("user_pw");
+  keys[1] = rb_intern("owner_pw");
+  keys[2] = rb_intern("encryption_revision");
+  keys[3] = rb_intern("allow_print");
+  keys[4] = rb_intern("allow_modify");
+  keys[5] = rb_intern("allow_extract");
+  keys[6] = rb_intern("accessibility");
+  keys[7] = rb_intern("assemble");
+  keys[8] = rb_intern("annotate_and_form");
+  keys[9] = rb_intern("form_filling");
+  keys[10] = rb_intern("encrypt_metadata");
+  keys[11] = rb_intern("use_aes");
+
+  rb_scan_args(argc, argv, ":", &kwargs);
+
+  // Get values for each keyword, or Qnil if missing
+  rb_get_kwargs(kwargs, keys, 0, 12, values);
+
+  DocumentHandle* h;
+  Data_Get_Struct(self, DocumentHandle, h);
+
+  h->set_encryption(StringValueCStr(values[0]),                        // user_pw
+                    StringValueCStr(values[1]),                        // owner_pw
+                    NUM2INT(values[2]),                                // r
+                    static_cast<qpdf_r3_print_e>(NUM2INT(values[3])),  // allow_print
+                    RTEST(values[4]),                                  // allow_modify
+                    RTEST(values[5]),                                  // allow_extract
+                    RTEST(values[6]),                                  // accessibility
+                    RTEST(values[7]),                                  // assemble
+                    RTEST(values[8]),                                  // annotate_and_form
+                    RTEST(values[9]),                                  // form_filling
+                    RTEST(values[10]),                                 // encrypt_metadata
+                    RTEST(values[11])                                  // use_aes
+  );
+  return Qnil;
+}
+
 RUBY_FUNC_EXPORTED "C" void Init_qpdf_ruby(void) {
   rb_mQpdfRuby = rb_define_module("QpdfRuby");
   rb_cDocument = rb_define_class_under(rb_mQpdfRuby, "Document", rb_cObject);
+  rb_eQpdfRubyError = rb_define_class_under(rb_mQpdfRuby, "Error", rb_eStandardError);
 
   rb_define_alloc_func(rb_cDocument, doc_alloc);
 
-  rb_define_method(rb_cDocument, "initialize", RUBY_METHOD_FUNC(doc_initialize), 1);
+  rb_define_method(rb_cDocument, "initialize", RUBY_METHOD_FUNC(doc_initialize), -1);
   rb_define_singleton_method(rb_cDocument, "from_memory", RUBY_METHOD_FUNC(doc_from_memory), 2);
 
   rb_define_method(rb_cDocument, "write", RUBY_METHOD_FUNC(doc_write), 1);
@@ -201,4 +287,9 @@ RUBY_FUNC_EXPORTED "C" void Init_qpdf_ruby(void) {
   rb_define_method(rb_cDocument, "mark_paths_as_artifacts", RUBY_METHOD_FUNC(rb_qpdf_mark_paths_as_artifacts), 0);
   rb_define_method(rb_cDocument, "ensure_bbox", RUBY_METHOD_FUNC(rb_qpdf_ensure_bboxs), 0);
   rb_define_method(rb_cDocument, "show_structure", RUBY_METHOD_FUNC(rb_qpdf_get_structure_string), 0);
+  rb_define_method(rb_cDocument, "encrypt", RUBY_METHOD_FUNC(rb_qpdf_doc_set_encryption), -1);
+
+  rb_define_const(rb_mQpdfRuby, "PRINT_FULL", INT2NUM(qpdf_r3p_full));
+  rb_define_const(rb_mQpdfRuby, "PRINT_LOW", INT2NUM(qpdf_r3p_low));
+  rb_define_const(rb_mQpdfRuby, "PRINT_NONE", INT2NUM(qpdf_r3p_none));
 }

data/ext/qpdf_ruby/qpdf_ruby.hpp

@@ -6,5 +6,6 @@
 VALUE rb_qpdf_mark_paths_as_artifacts(VALUE self);
 VALUE rb_qpdf_ensure_bboxs(VALUE self);
 VALUE rb_qpdf_get_structure_string(VALUE self);
+VALUE rb_qpdf_doc_set_encryption(int argc, VALUE* argv, VALUE self);
 
 #endif /* QPDF_RUBY_H */

data/ext/qpdf_ruby/struct_node.hpp

@@ -1,5 +1,7 @@
 #pragma once
 
+#define POINTERHOLDER_TRANSITION 1
+
 #include <qpdf/QPDF.hh>
 #include <qpdf/QPDFWriter.hh>
 #include <qpdf/QPDFPageObjectHelper.hh>

data/lib/qpdf_ruby/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module QpdfRuby
-  VERSION = "0.1.0"
+  VERSION = "0.1.1"
 end

data/lib/qpdf_ruby.rb

@@ -4,6 +4,10 @@ require_relative "qpdf_ruby/version"
 require_relative "qpdf_ruby/qpdf_ruby"
 
 module QpdfRuby
+  ENCRYPTION_REVISION_AES_128  = 4  # Acrobat 6.x, 128-bit AES
+  ENCRYPTION_REVISION_AES_256  = 5  # Acrobat 9.x, 256-bit AES
+  ENCRYPTION_REVISION_AES_256U = 6  # Acrobat X, 256-bit AES (PDF 2.0+ update)
+
   class Error < StandardError; end
   # Your code goes here...
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: qpdf_ruby
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Dieter S.
@@ -139,6 +139,7 @@ files:
 - LICENSE.txt
 - README.md
 - Rakefile
+- cliff.toml
 - docker/Dockerfile
 - exe/qpdf_ruby
 - ext/qpdf_ruby/array_node.cpp