Questions tagged [mongodb-csfle]
15 questions
3
votes
1 answer
MongoDB automatic (implicit) CSFLE broken with Micronaut 3
I've recently updated my app from Micronaut 2 to Micronaut 3, and as a result all Mongo automatic CSFLE encryption/decryption has stopped working.
If I create a ClientEncryption object and manually decrypt the field, that works, and the logging…
user2521119
- 165
- 2
- 14
3
votes
2 answers
MongoDB Client Side Field Level Encryption - NodeJS Driver - The keyAltNames field is not created in the Data Key Document in the local key vault
I have been following this guide - How to use MongoDB Client-Side Field Level Encryption (CSFLE) with Node.js/ to test out the MongoDB CSFLE.
In doing so, in the step of creating the data key in local key vault store…
Ravindu Nirmal Fernando
- 4,272
- 4
- 18
- 29
2
votes
0 answers
MongoServerError: A non-static (JSONPointer) keyId is not supported
I'm using csfle using mongoDB enterprise 5 by setting up authenticated client.
I've got the field level encryption with json pointer keys working (every document can have a different encryption key).
I'm also using an authenticated client with the…
Sanket Berde
- 6,555
- 4
- 35
- 39
1
vote
2 answers
MongoDB Automatic client side Field level Encryption | mongoCryptD daemon not marking the fields to be encrypted
I am using MongoDB's automatic client side field level encryption, But I observed that the fields are not getting encrypted in the collection.
The MongoDB-crypt library that I am using is 1.6.1
mongo driver core and sync version are 4.9.1
The…
Wolf17
- 27
- 7
1
vote
2 answers
Unable understand how to install libmongocrypt
I am trying to setup a mongo connection in NODE.js with autoEncrypt option and it of course tries to connect with the driver at port 27020. I don't have libmongocrypt service running so the connection generates the following error.
ECONNREFUSED…
Danish Umair
- 13
- 4
1
vote
1 answer
How do I set up mongoDB's new CSFLE feature, with explicit encryption implicit decryption using nodejs?
I'm trying to use MongoDB's Client-Side Filed Level Encryption feature with the community edition. I'm not interested in the auto-encryption feature. However, we need the auto-decryption feature which as per the docs is possible in the community…
Nipun Jain
- 11
- 2
1
vote
2 answers
Mongo CSFLE Data encryption keys fetched once or in batches
In MongoDB client side fields level encryption, When we encrypt records and have multiple data encryption keys(please don't confuse this with master key) in key vault, if we fetch multiple records in a single query, say X records which have 1 field…
rand_guy
- 33
- 6
0
votes
1 answer
MongoDB(Mongo atlas) Client-side Field level encryption with AWS lambda
I am trying to implement MongoDB Client-side Field level encryption inside aws lambda function. Getting an error
MongoServerSelectionError: connect ECONNREFUSED 127.0.0.1:27020
I am trying to create a secure connection as below
const…
Pruthwiraj Nayak
- 301
- 2
- 5
0
votes
0 answers
How to know if a field is encrypted in mongodb?
I have a requirement to implement client side field level encryption, and I implemented it using the Automatic Encryption provided by MongoDB, now I have to update the schema of an existing collection and need to encrypt the existing data in the…
Akhil Kumar
- 40
- 7
0
votes
0 answers
MongoServerError: BSON field 'insert.jsonSchema' is an unknown field
I am new in MongoDB. I want to do client side field level encryption.
Here is the full project link which one I am…
engTech
- 13
- 4
0
votes
0 answers
MongoDB Java - How does the CMK work?/Different keys producing same result
MongoDB offers a feature called Client-Side Field Level Encryption (CSFLE) which allows applications to encrypt data before storing it in the database.
As the name suggests you can control the encryption for each field of a document individually…
Joneko
- 11
- 2
0
votes
1 answer
Does MongoDb 'Client Side Field Level Encryption' (CSFLE) support searching DB for a encryted field?
If I configure my MongoDb to use 'Client Side Field Level Encryption' (CSFLE), is it possible for a client to search the DB collections for a encryted field. As example - if I encrypt a property/field 'EmailAddress' of a POCO-Class-User and later…
nogood
- 1,117
- 1
- 11
- 34
0
votes
1 answer
mongo connection exceeded when using csfle
Using Mongo Atlas M0 free tier.
I have recently implemented mongo client side field level encryption (csfle). The implementation was successful but problem started after that.
As par documentation, to implement csfle, we have to provide the…
Brijen Patel
- 23
- 2
- 8
0
votes
1 answer
mongodb CSFLE -- use dynamic data keys
We'd like to use mongo's native CSFLE offering (https://docs.mongodb.com/drivers/security/client-side-field-level-encryption-guide/), however as per the documentation, it seems like the data key id should be provided ahead of the initialisation of…
leongold
- 1,004
- 7
- 14
-1
votes
1 answer
Error: MongoServerSelectionError: connect ECONNREFUSED 127.0.0.1:27020
const clientEncryption = new ClientEncryption(unencryptedClient, {
kmsProviders,
keyVaultNamespace,
});
// genrate encyption key
const dataKeyId = await clientEncryption.createDataKey("local").then(() =\> {
console.log("Encyption key…
