Class: Mongo::Crypt::Handle Private

Inherits:

Object

• Object
• Mongo::Crypt::Handle

Defined in:

build/ruby-driver-master/lib/mongo/crypt/handle.rb

Overview

This class is part of a private API. You should avoid using this class if possible, as it may be removed or be changed in the future.

A handle to the libmongocrypt library that wraps a mongocrypt_t object, allowing clients to set options on that object or perform operations such as encryption and decryption

Instance Method Summary

• #initialize(kms_providers, kms_tls_options, options = {}) ⇒ Handle constructor private

  Creates a new Handle object and initializes it with options.

• #kms_tls_options(provider) ⇒ Hash private

  Return TLS options for KMS provider.

• #ref ⇒ FFI::Pointer private

  Return the reference to the underlying @mongocrypt object.

Constructor Details

#initialize(kms_providers, kms_tls_options, options = {}) ⇒ Handle

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Creates a new Handle object and initializes it with options

Parameters:

• kms_providers (Crypt::KMS::Credentials) —

  Credentials for KMS providers.

• kms_tls_options (Hash) —

  TLS options to connect to KMS providers. Keys of the hash should be KSM provider names; values should be hashes of TLS connection options. The options are equivalent to TLS connection options of Mongo::Client.

• options (Hash) (defaults to: {}) —

  A hash of options.

Options Hash (options):

• :schema_map (Hash | nil) —

  A hash representing the JSON schema of the collection that stores auto encrypted documents. This option is mutually exclusive with :schema_map_path.

• :schema_map_path (String | nil) —

  A path to a file contains the JSON schema of the collection that stores auto encrypted documents. This option is mutually exclusive with :schema_map.

• :encrypted_fields_map (Hash | nil) —

  maps a collection namespace to an encryptedFields.

  • Note: If a collection is present on both the encryptedFieldsMap and schemaMap, an error will be raised.

• :bypass_query_analysis (Boolean | nil) —

  When true disables automatic analysis of outgoing commands.

• :logger (Logger) —

  A Logger object to which libmongocrypt logs will be sent

# File 'build/ruby-driver-master/lib/mongo/crypt/handle.rb', line 55

def initialize(kms_providers, kms_tls_options, options={})
  # FFI::AutoPointer uses a custom release strategy to automatically free
  # the pointer once this object goes out of scope
  @mongocrypt = FFI::AutoPointer.new(
    Binding.mongocrypt_new,
    Binding.method(:mongocrypt_destroy)
  )

  @kms_tls_options =  kms_tls_options

  maybe_set_schema_map(options)

  @encrypted_fields_map = options[:encrypted_fields_map]
  set_encrypted_fields_map if @encrypted_fields_map

  @bypass_query_analysis = options[:bypass_query_analysis]
  set_bypass_query_analysis if @bypass_query_analysis

  @logger = options[:logger]
  set_logger_callback if @logger

  set_crypto_hooks

  Binding.setopt_kms_providers(self, kms_providers.to_document)
  initialize_mongocrypt
end

Instance Method Details

#kms_tls_options(provider) ⇒ Hash

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Return TLS options for KMS provider. If there are no TLS options set, empty hash is returned.

Parameters:

• provider (String) —

  KSM provider name.

Returns:

• (Hash) —

  TLS options to connect to KMS provider.

# File 'build/ruby-driver-master/lib/mongo/crypt/handle.rb', line 95

def kms_tls_options(provider)
  @kms_tls_options.fetch(provider, {})
end

#ref ⇒ FFI::Pointer

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Return the reference to the underlying @mongocrypt object

Returns:

• (FFI::Pointer)

# File 'build/ruby-driver-master/lib/mongo/crypt/handle.rb', line 85

def ref
  @mongocrypt
end