com.mongodb.internal.capi.MongoCryptHelper Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of mongo-java-driver Show documentation
Show all versions of mongo-java-driver Show documentation
The MongoDB Java Driver uber-artifact, containing mongodb-driver, mongodb-driver-core, and bson
/*
* Copyright 2008-present MongoDB, Inc.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.mongodb.internal.capi;
import com.mongodb.Block;
import com.mongodb.ConnectionString;
import com.mongodb.MongoClientException;
import com.mongodb.MongoClientSettings;
import com.mongodb.connection.ClusterSettings;
import com.mongodb.connection.SocketSettings;
import com.mongodb.crypt.capi.MongoAwsKmsProviderOptions;
import com.mongodb.crypt.capi.MongoCryptOptions;
import com.mongodb.crypt.capi.MongoLocalKmsProviderOptions;
import org.bson.BsonDocument;
import java.io.File;
import java.nio.ByteBuffer;
import java.util.ArrayList;
import java.util.List;
import java.util.Map;
import java.util.concurrent.TimeUnit;
public final class MongoCryptHelper {
public static MongoCryptOptions createMongoCryptOptions(final Map> kmsProviders,
final Map namespaceToLocalSchemaDocumentMap) {
MongoCryptOptions.Builder mongoCryptOptionsBuilder = MongoCryptOptions.builder();
for (Map.Entry> entry : kmsProviders.entrySet()) {
if (entry.getKey().equals("aws")) {
mongoCryptOptionsBuilder.awsKmsProviderOptions(
MongoAwsKmsProviderOptions.builder()
.accessKeyId((String) entry.getValue().get("accessKeyId"))
.secretAccessKey((String) entry.getValue().get("secretAccessKey"))
.build()
);
} else if (entry.getKey().equals("local")) {
mongoCryptOptionsBuilder.localKmsProviderOptions(
MongoLocalKmsProviderOptions.builder()
.localMasterKey(ByteBuffer.wrap((byte[]) entry.getValue().get("key")))
.build()
);
} else {
throw new MongoClientException("Unrecognized KMS provider key: " + entry.getKey());
}
}
mongoCryptOptionsBuilder.localSchemaMap(namespaceToLocalSchemaDocumentMap);
return mongoCryptOptionsBuilder.build();
}
@SuppressWarnings("unchecked")
public static List createMongocryptdSpawnArgs(final Map options) {
List spawnArgs = new ArrayList();
String path = options.containsKey("mongocryptdSpawnPath")
? (String) options.get("mongocryptdSpawnPath")
: "mongocryptd";
spawnArgs.add(path);
if (options.containsKey("mongocryptdSpawnArgs")) {
spawnArgs.addAll((List) options.get("mongocryptdSpawnArgs"));
}
if (!spawnArgs.contains("--idleShutdownTimeoutSecs")) {
spawnArgs.add("--idleShutdownTimeoutSecs");
spawnArgs.add("60");
}
return spawnArgs;
}
public static MongoClientSettings createMongocryptdClientSettings(final String connectionString) {
return MongoClientSettings.builder()
.applyToClusterSettings(new Block() {
@Override
public void apply(final ClusterSettings.Builder builder) {
builder.serverSelectionTimeout(10, TimeUnit.SECONDS);
}
})
.applyToSocketSettings(new Block() {
@Override
public void apply(final SocketSettings.Builder builder) {
builder.readTimeout(10, TimeUnit.SECONDS);
builder.connectTimeout(10, TimeUnit.SECONDS);
}
})
.applyConnectionString(new ConnectionString((connectionString != null)
? connectionString : "mongodb://localhost:27020"))
.build();
}
public static ProcessBuilder createProcessBuilder(final Map options) {
return new ProcessBuilder(createMongocryptdSpawnArgs(options));
}
public static void startProcess(final ProcessBuilder processBuilder) {
try {
processBuilder.redirectErrorStream(true);
processBuilder.redirectOutput(new File(System.getProperty("os.name").startsWith("Windows") ? "NUL" : "/dev/null"));
processBuilder.start();
} catch (Throwable t) {
throw new MongoClientException("Exception starting mongocryptd process. Is `mongocryptd` on the system path?", t);
}
}
private MongoCryptHelper() {
}
}