Disallow QE encrypted fields from appearing in $lookup subpipelines

XMLWordPrintableJSON

    • Query Integration
    • ALL
    • v8.0, v7.3, v7.0
    • Security 2024-06-10, Security 2024-06-24
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Until we have full support for $lookup over QE collections, we should disallow users from performing $lookups that include sub-pipeline match expressions containing values for QE-encrypted fields.  We currently don't implement the server-side rewrites to support this, so running such aggregations on encrypted collections will return incorrect results.

              Assignee:
              Unassigned
              Reporter:
              Erwin Pe
              Votes:
              0 Vote for this issue
              Watchers:
              11 Start watching this issue

                Created:
                Updated:
                Resolved: