created Base SPP VCI Issuer module

Author: reichie020212

spp_openid_vci/__init__.py

@@ -0,0 +1,2 @@
+from . import models
+from . import wizard

spp_openid_vci/__manifest__.py

@@ -0,0 +1,34 @@
+# Part of OpenSPP. See LICENSE file for full copyright and licensing details.
+
+
+{
+    "name": "SPP Registry OpenID VCI: Base",
+    "category": "OpenSPP",
+    "version": "17.0.1.0.0",
+    "sequence": 1,
+    "author": "OpenSPP.org",
+    "website": "https://github.com/OpenSPP/openspp-modules",
+    "license": "LGPL-3",
+    "development_status": "Beta",
+    "maintainers": ["jeremi", "gonzalesedwin1123"],
+    "depends": [
+        "spp_encryption",
+        "g2p_encryption_rest_api",
+        "g2p_registry_base",
+        "g2p_openid_vci",
+        "g2p_openid_vci_rest_api",
+    ],
+    "external_dependencies": {"python": ["qrcode"]},
+    "data": [
+        "security/ir.model.access.csv",
+        "wizard/vci_issuer_selection_view.xml",
+        "data/paperformat.xml",
+        "views/id_card.xml",
+    ],
+    "assets": {},
+    "demo": [],
+    "images": [],
+    "application": False,
+    "installable": True,
+    "auto_install": False,
+}

spp_openid_vci/data/paperformat.xml

@@ -0,0 +1,17 @@
+<odoo>
+    <record id="paperformat_a4" model="report.paperformat">
+        <field name="name">A4</field>
+        <field name="default" eval="False" />
+        <field name="format">A4</field>
+        <field name="page_height">0</field>
+        <field name="page_width">0</field>
+        <field name="orientation">Portrait</field>
+        <field name="margin_top">40</field>
+        <field name="margin_bottom">40</field>
+        <field name="margin_left">20</field>
+        <field name="margin_right">20</field>
+        <field name="header_line" eval="False" />
+        <field name="header_spacing">35</field>
+        <field name="dpi">90</field>
+    </record>
+</odoo>

spp_openid_vci/models/__init__.py

@@ -0,0 +1,2 @@
+from . import res_partner
+from . import vci_issuer

spp_openid_vci/models/res_partner.py

@@ -0,0 +1,119 @@
+import base64
+import calendar
+import json
+from datetime import datetime
+from io import BytesIO
+
+import qrcode
+import requests
+from qrcode.image.pil import PilImage
+
+from odoo import _, fields, models
+from odoo.exceptions import UserError
+
+
+class SPPRegistry(models.Model):
+    _inherit = "res.partner"
+
+    vc_qr_code = fields.Binary(string="VC QR Code", attachment=True)
+
+    def _validate_vci_issuer(self, vci_issuer):
+        if not vci_issuer:
+            raise UserError("No issuer found.")
+
+        if not vci_issuer.auth_sub_id_type_id:
+            raise UserError("No auth sub id type found in the issuer.")
+
+        if not vci_issuer.encryption_provider_id:
+            raise UserError("No encryption provider found in the issuer.")
+
+    def _issue_vc(self, vci_issuer):
+        self.ensure_one()
+
+        encryption_provider_id = vci_issuer.encryption_provider_id
+
+        reg_id = self.env["g2p.reg.id"].search(
+            [("partner_id", "=", self.id), ("id_type", "=", vci_issuer.auth_sub_id_type_id.id)]
+        )
+        if not reg_id:
+            raise UserError(f"No Registrant found with this ID Type: {vci_issuer.auth_sub_id_type_id.name}.")
+
+        web_base_url = self.env["ir.config_parameter"].sudo().get_param("web.base.url").rstrip("/")
+
+        url = f"{web_base_url}/api/v1/vci/.well-known/openid-credential-issuer/{vci_issuer.name}"
+
+        credential_issuer_response = requests.get(url)
+
+        issuer_data = credential_issuer_response.json()
+
+        credential_issuer = f"{issuer_data['credential_issuer']}/api/v1/security"
+        credentials_supported = issuer_data.get("credentials_supported", None)
+        credential_request = credentials_supported[0]
+
+        today = datetime.today()
+
+        encryption_provider_id = vci_issuer.encryption_provider_id
+
+        dict_data = {
+            "sub": reg_id.value,
+            "name": "OpenSPP",
+            "iat": calendar.timegm(today.timetuple()),
+            "scope": vci_issuer.scope,
+            "iss": credential_issuer,
+        }
+
+        signed_data = encryption_provider_id.jwt_sign(data=dict_data)
+
+        return self.env["g2p.openid.vci.issuers"].issue_vc(credential_request, signed_data)
+
+    def _create_qr_code(self, data):
+        qr = qrcode.QRCode(
+            error_correction=qrcode.constants.ERROR_CORRECT_L,
+            image_factory=PilImage,
+            box_size=10,
+            border=4,
+        )
+
+        qr.add_data(data)
+        qr.make(fit=True)
+
+        img = qr.make_image()
+
+        temp = BytesIO()
+        img.save(temp, format="PNG")
+        qr_img = base64.b64encode(temp.getvalue())
+        temp.close()
+
+        return qr_img
+
+    def registry_issue_card(self):
+        self.ensure_one()
+
+        form_id = self.env.ref("spp_openid_vci.issue_card_wizard").id
+        action = {
+            "name": _("Issue Card"),
+            "type": "ir.actions.act_window",
+            "view_mode": "form",
+            "view_id": form_id,
+            "view_type": "form",
+            "res_model": "spp.issue.card.wizard",
+            "target": "new",
+            "context": {
+                "default_partner_id": self.id,
+            },
+        }
+        return action
+
+    def _issue_vc_qr(self, vci_issuer):
+        self.ensure_one()
+
+        self._validate_vci_issuer(vci_issuer)
+
+        result = self._issue_vc(vci_issuer)
+
+        qr_img = self._create_qr_code(json.dumps(result))
+
+        self.vc_qr_code = qr_img
+
+        admission_form = self.env.ref("spp_openid_vci.action_generate_id_card").report_action(self)
+        return admission_form

spp_openid_vci/models/vci_issuer.py

@@ -0,0 +1,13 @@
+from odoo import api, models
+
+
+class CustomOpenIDVCIssuer(models.Model):
+    _inherit = "g2p.openid.vci.issuers"
+
+    @api.constrains("auth_allowed_issuers", "issuer_type")
+    def onchange_auth_allowed_issuers(self):
+        for rec in self:
+            if not rec.auth_allowed_issuers:
+                args = [rec, f"set_default_auth_allowed_issuers_{rec.issuer_type}"]
+                if hasattr(*args):
+                    getattr(*args)()

spp_openid_vci/pyproject.toml

@@ -0,0 +1,3 @@
+[build-system]
+requires = ["whool"]
+build-backend = "whool.buildapi"

spp_openid_vci/security/ir.model.access.csv

@@ -0,0 +1,8 @@
+id,name,model_id:id,group_id:id,perm_read,perm_write,perm_create,perm_unlink
+ir_attachment_crypto_admin_access,IR Attachment Crypto Admin Access,base.model_ir_attachment,g2p_encryption.crypto_admin,1,1,1,1
+ir_attachment_admin_access,IR Attachment Admin Access,base.model_ir_attachment,g2p_registry_base.group_g2p_admin,1,1,1,1
+ir_attachment_registrar_access,IR Attachment Registrar Access,base.model_ir_attachment,g2p_registry_base.group_g2p_registrar,1,1,1,1
+
+spp_issue_card_wizard_crypto_admin,Issue Card Wizard Crypto Admin Access,spp_openid_vci.model_spp_issue_card_wizard,g2p_encryption.crypto_admin,1,1,1,1
+spp_issue_card_wizard_admin,Issue Card Wizard Admin Access,spp_openid_vci.model_spp_issue_card_wizard,g2p_registry_base.group_g2p_admin,1,1,1,1
+spp_issue_card_wizard_registrar,Issue Card Wizard Registrar Access,spp_openid_vci.model_spp_issue_card_wizard,g2p_registry_base.group_g2p_registrar,1,1,1,0

spp_openid_vci/views/id_card.xml

@@ -0,0 +1,77 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<odoo>
+
+    <record id="action_generate_id_card" model="ir.actions.report">
+        <field name="name">ID Card</field>
+        <field name="model">res.partner</field>
+        <field name="report_type">qweb-pdf</field>
+        <field name="report_name">spp_openid_vci.id_vc_card</field>
+        <field name="report_file">spp_openid_vci.id_vc_card</field>
+        <field name="print_report_name">'ID Card - %s' % (object.name).replace('/', '').strip()</field>
+        <field name="paperformat_id" ref="spp_openid_vci.paperformat_a4" />
+        <field name="binding_model_id" ref="model_res_partner" />
+        <field name="binding_type">report</field>
+    </record>
+
+    <template id="id_vc_card">
+        <t t-call="web.basic_layout">
+            <style>
+                .id-card-table {
+                    width: 100%;
+                    border-collapse: collapse;
+                    margin-top: 20px;
+                }
+                .id-card-table{
+                    border: 2px solid black;
+                }
+                .id-card-table td {
+                    padding: 10px;
+                    vertical-align: middle;
+                }
+                .id-card-fields {
+                    width: 65%;
+                }
+                .id-card-image {
+                    width: 35%;
+                    text-align: left;
+                }
+                .id-card-image img {
+                    max-width: 100%;
+                    height: auto;
+                }
+                .tr-title td {
+                    text-align: center;
+                    margin-bottom: 16px;
+                }
+            </style>
+            <t t-foreach="docs" t-as="doc">
+                <div class="page">
+                    <table class="id-card-table">
+                        <tr class="tr-title">
+                            <td colspan="2"><h2>ID Card</h2></td>
+                        </tr>
+                        <tr>
+                            <!-- Fields on the left -->
+                            <td class="id-card-fields">
+                                <strong>Name:</strong> <small t-field="doc.name" /><br />
+                                <t t-if="not doc.is_group">
+                                    <strong>Birthdate:</strong> <small t-field="doc.birthdate" /><br />
+                                    <strong>Gender:</strong> <small t-field="doc.gender" /><br />
+                                </t>
+                                <strong>Address:</strong>  <small t-field="doc.address" /><br />
+                            </td>
+                            <!-- QR Code on the right -->
+                            <td class="id-card-image">
+                                <img
+                                    t-att-src="'data:image/png;base64,%s' % doc.vc_qr_code.decode()"
+                                    alt="QR Code"
+                                    class="fit-image"
+                                />
+                            </td>
+                        </tr>
+                    </table>
+                </div>
+            </t>
+        </t>
+    </template>
+</odoo>

spp_openid_vci/wizard/__init__.py

@@ -0,0 +1 @@
+from . import vci_issuer_selection