Uploaded image for project: 'MongoDB Shell'
  1. MongoDB Shell
  2. MONGOSH-590

Provide option for bypassing automatic encryption *and* decryption

XMLWordPrintableJSON

    • Type: Icon: Task Task
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 0.8.0
    • Affects Version/s: None
    • Component/s: None
    • None
    • Needed
    • Hide

      The `Mongo` constructor function now takes an additional `explicitEncryptionOnly` boolean option. This option is mutually exclusive with providing `schemaMap`.

      When the option is set, the connection will use neither automatic encryption nor decryption. However, it is still possible to use the `mongo.getKeyVault()` and `mongo.getClientEncryption()` methods in order to perform explicit encryption.

      Show
      The `Mongo` constructor function now takes an additional `explicitEncryptionOnly` boolean option. This option is mutually exclusive with providing `schemaMap`. When the option is set, the connection will use neither automatic encryption nor decryption. However, it is still possible to use the `mongo.getKeyVault()` and `mongo.getClientEncryption()` methods in order to perform explicit encryption.

      Provide a way to pass no FLE options to the driver when creating a new `Mongo` object, for easier testing and for making sure that a mode in which only explicit encryption is available exists.

            Assignee:
            anna.henningsen@mongodb.com Anna Henningsen
            Reporter:
            anna.henningsen@mongodb.com Anna Henningsen
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: