From d0346a3ef87fb49555f9434ea099f240cdf51593 Mon Sep 17 00:00:00 2001
From: Mohamed-Hacene <mohamedhacene.b@gmail.com>
Date: Wed, 15 May 2024 18:57:57 +0200
Subject: [PATCH] feat: create action plan pdf

---
 .../core/templates/core/action_plan_pdf.html  | 60 +++++++++++++++++++
 backend/core/templatetags/core_extras.py      |  7 +++
 backend/core/views.py                         | 43 +++++++++++++
 3 files changed, 110 insertions(+)
 create mode 100644 backend/core/templates/core/action_plan_pdf.html

diff --git a/backend/core/templates/core/action_plan_pdf.html b/backend/core/templates/core/action_plan_pdf.html
new file mode 100644
index 000000000..875c2dfd5
--- /dev/null
+++ b/backend/core/templates/core/action_plan_pdf.html
@@ -0,0 +1,60 @@
+{% extends 'core/base_pdf.html' %}
+{% block content %}
+{% load i18n core_extras %}
+
+<style>
+    table, th, td {
+        border: 1px solid black;
+      }
+</style>
+
+<main class="p-2 m-2 main">
+    <h1 class="flex justify-center">Action plan</h1>
+    <div class="bg-white p-2 m-2 space-x-3 flex flex-row justify-center">
+        <p class="font-semibold text-lg"> {% trans "Domain" %}: {{ compliance_assessment.project.folder }}</p>
+        <p class="font-semibold text-lg">/</p>
+        <p class="font-semibold text-lg"> {% trans "Project" %}: {{ compliance_assessment.project.name }}</p>
+        <p class="font-semibold text-lg">/</p>
+        <p class="font-semibold text-lg"> {% trans "Audit" %}: {{ compliance_assessment.name }} - {{ compliance_assessment.version }}</p>
+    </div>
+    <p class="p-2 m-2 text-lg font-semibold"> {% trans "Associated applied controls" %}: </p>
+    <p class="m-2 p-2">{% trans "Separated by status and sorted by eta" %}</p>
+    {% for status, applied_controls in context.items%}
+        {% for status_color, color in color_map.items %}
+            {% if status_color == status %}
+                <p class="flex p-2 m-2 text-lg font-semibold justify-center" style="background-color: {{color}}">{% trans status|title %}:</p>
+            {% endif %}
+        {% endfor %}
+        <div class="bg-white p-2 m-2 shadow overflow-hidden rounded-lg flex flex-row">  
+            <div class="flex w-full">
+                <table class="w-full p-2 mt-2">
+                    <thead>
+                        <tr class="uppercase">
+                            <th class="text-md p-2 text-center">{% trans "Name" %}</th>
+                            <th class="text-md p-2 text-center">{% trans "Description" %}</th>
+                            <th class="text-md p-2 text-center">{% trans "Category" %}</th>
+                            <th class="text-md p-2 text-center">{% trans "ETA" %}</th>
+                            <th class="text-md p-2 text-center">{% trans "Expiry date" %}</th>
+                            <th class="text-md p-2 text-center">{% trans "Effort" %}</th>
+                            <th class="text-md p-2 text-center">{% trans "Requirements count" %}</th>
+                        </tr>
+                    </thead>
+                    <tbody>
+                        {% for applied_control in applied_controls %}
+                        <tr>
+                            <td class="text-md p-2 text-center">{{ applied_control.name }}</td>
+                            <td class="text-md p-2 text-center">{{ applied_control.description }}</td>
+                            <td class="text-md p-2 text-center">{{ applied_control.category }}</td>
+                            <td class="text-md p-2 text-center">{{ applied_control.eta }}</td>
+                            <td class="text-md p-2 text-center">{{ applied_control.expiry_date }}</td>
+                            <td class="text-md p-2 text-center">{{ applied_control.effort }}</td>
+                            <td class="text-md p-2 text-center">{% get_requirements_count applied_control compliance_assessment %}</td>
+                        </tr>
+                        {% endfor %}
+                    </tbody>
+                </table>
+            </div>
+        </div>
+    {% endfor %}
+</main>
+{% endblock %}
diff --git a/backend/core/templatetags/core_extras.py b/backend/core/templatetags/core_extras.py
index 0aebc1e5b..90f069197 100644
--- a/backend/core/templatetags/core_extras.py
+++ b/backend/core/templatetags/core_extras.py
@@ -2,6 +2,7 @@
 
 from ciso_assistant.settings import VERSION, BUILD, DEBUG
 from core.utils import COUNTRY_FLAGS, LANGUAGES
+from core.models import RequirementAssessment
 
 register = template.Library()
 
@@ -15,6 +16,12 @@ def app_version():
 def app_build():
     return f"{BUILD} (dev)" if DEBUG else BUILD
 
+@register.simple_tag()
+def get_requirements_count(applied_control, compliance_assessment):
+    return RequirementAssessment.objects.filter(
+                        compliance_assessment=compliance_assessment
+                    ).filter(applied_controls=applied_control).count()
+
 
 @register.filter("class")
 def _class(obj):
diff --git a/backend/core/views.py b/backend/core/views.py
index 3b63a2bb0..64a8ceb89 100644
--- a/backend/core/views.py
+++ b/backend/core/views.py
@@ -1226,6 +1226,49 @@ def action_plan(self, request, pk):
                     applied_control
                 )
         return Response(response)
+    
+    @action(detail=True, name="Get action plan PDF")
+    def action_plan_pdf(self, request, pk):
+        (object_ids_view, _, _) = RoleAssignment.get_accessible_object_ids(
+            Folder.get_root_folder(), request.user, ComplianceAssessment
+        )
+        if UUID(pk) in object_ids_view:
+            context = {
+                "planned": list(),
+                "active": list(),
+                "inactive": list(),
+                "no status": list(),
+            }
+            color_map = {
+                "planned": "#93c5fd",
+                "active": "#86efac",
+                "inactive": "#fca5a5",
+                "no status": "#e5e7eb",
+            }
+            compliance_assessment_object = self.get_object()
+            requirement_assessments_objects = (
+                compliance_assessment_object.get_requirement_assessments()
+            )
+            applied_controls = AppliedControl.objects.filter(
+                    requirement_assessments__in=requirement_assessments_objects
+                ).distinct().order_by("eta")
+            for applied_control in applied_controls:
+                context[applied_control.status].append(
+                    applied_control
+                ) if applied_control.status else context["no status"].append(
+                    applied_control
+                )
+            data = {
+                "color_map": color_map,
+                "context": context,
+                "compliance_assessment": compliance_assessment_object,
+            }
+            html = render_to_string("core/action_plan_pdf.html", data)
+            pdf_file = HTML(string=html).write_pdf()
+            response = HttpResponse(pdf_file, content_type="application/pdf")
+            return response
+        else:
+            return Response({"error": "Permission denied"})
 
     def perform_create(self, serializer):
         """