Uploaded image for project: 'Compass '
  1. Compass
  2. COMPASS-8816

Investigate changes in SPM-2472: Support $lookup in CSFLE and QE

XMLWordPrintableJSON

    • Type: Icon: Investigation Investigation
    • Resolution: Unresolved
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: None
    • None
    • Developer Tools

      Original Downstream Change Summary

      Docs changes needed to update CSFLE and QE limitations and discuss the contingencies of this new feature.

      Libmongocrypt changes required to accommodate collect the required encryption schemas, and provide them in the new field "csfleEncryptionSchemas". Drivers and Shell are not affected and only need to update libmongocrypt.

      Description of Linked Ticket

      Epic Summary

      Summary

      Currently, customers cannot use a collection with automatic encryption attached to it in a $lookup stage of a pipeline. We need to (thoughtfully) remove this limitation in CSFLE.

      Motivation

      CSFLE adoption is hindered because collections that use automatic encryption cannot be used in $lookup operations. Customers such as Goldman Sachs are avoiding CSFLE because of this issue. Here is a toy program that demonstrates the issue (see the discussion at the top of the program about how to demonstrate the issue). The collection with the encrypted field can’t be the collection used to run the aggregation query with the lookup, nor can it be the source collection used in the lookup.

      Cast of Characters

      Documentation

      Product Description

      Scope Document
      Technical Design Document

      Docs Update

            Assignee:
            Unassigned Unassigned
            Reporter:
            backlog-server-pm Backlog - Core Eng Program Management Team
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: