Skip to content

DRIVERS-3294 Update $lookup prose test to support 8.2+ #1846

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 13 commits into from
Oct 15, 2025
Merged

DRIVERS-3294 Update $lookup prose test to support 8.2+ #1846

Show file tree
Hide file tree
Changes from 9 commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
31612b9
DRIVERS-3294 Update test error message substring
connorsmacd Sep 29, 2025
c293e1b
DRIVERS-3294 Update changelog
connorsmacd Sep 29, 2025
9f97bbd
Fix linter error
connorsmacd Sep 29, 2025
4953b79
DRIVERS-3294 Update server version requirements
connorsmacd Sep 29, 2025
2a0d2f2
DRIVERS-3294 Relax version requirement
connorsmacd Sep 30, 2025
cc0720f
DRIVERS-3294 Add test case for QE joining non-CSFLE schema
connorsmacd Sep 30, 2025
201f2c2
DRIVERS-3294 Fix linter errors
connorsmacd Sep 30, 2025
12a4a1c
DRIVERS-3294 Fix typo
connorsmacd Sep 30, 2025
42186f0
DRIVERS-3294 Specify safe content in lookup
connorsmacd Oct 1, 2025
fb505df
DRIVERS-3294 Make suggested PR changes
connorsmacd Oct 1, 2025
ae55094
DRIVERS-3294 Fix linter errors
connorsmacd Oct 1, 2025
7888bf6
DRIVERS-3294 Change libmongocrypt version requirement
connorsmacd Oct 2, 2025
deb7e9a
DRIVERS-3294 Fix linter errors
connorsmacd Oct 2, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions source/client-side-encryption/client-side-encryption.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2519,6 +2519,8 @@ explicit session parameter as described in the [Drivers Sessions Specification](

## Changelog

- 2025-09-30: Update `$lookup` prose test to reflect 8.2 changes.

- 2025-08-06: Add `TextPreview` algorithm.

- 2024-02-19: Add custom options AWS credential provider.
Expand Down
3 changes: 3 additions & 0 deletions source/client-side-encryption/etc/data/lookup/schema-non-csfle.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
{
"bsonType": "object"
}
34 changes: 33 additions & 1 deletion source/client-side-encryption/tests/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3457,6 +3457,7 @@ Use `encryptedClient` to drop and create the following collections:
- `db.qe2` with options: `{ "encryptedFields": "<schema-qe2.json>"}`.
- `db.no_schema` with no options.
- `db.no_schema2` with no options.
- `db.non_csfle_schema` with options: `{ "validator": { "$jsonSchema": "<schema-non-csfle.json>"}}`

Create an unencrypted MongoClient named `unencryptedClient`.

Expand All @@ -3472,6 +3473,7 @@ Insert documents with `encryptedClient`:
- Use `unencryptedClient` to retrieve it. Assert the `qe2` field is BSON binary.
- `{"no_schema": "no_schema"}` into `db.no_schema`
- `{"no_schema2": "no_schema2"}` into `db.no_schema2`
- `{"non_csfle_schema": "non_csfle_schema"}` into `db.non_csfle_schema`

#### Case 1: `db.csfle` joins `db.no_schema`

Expand Down Expand Up @@ -3673,7 +3675,12 @@ Run an aggregate operation on `db.csfle` with the following pipeline:
]
```

Expect an exception to be thrown with a message containing the substring `not supported`.
Expect an exception to be thrown with a message containing one of the following substrings depending on the
mongocryptd/crypt_shared version:

- Below version 8.2: `not supported`.
- Version 8.2 and above:
`Cannot specify both encryptionInformation and csfleEncryptionSchemas unless csfleEncryptionSchemas only contains non-encryption JSON schema validators`.

#### Case 9: test error with \<8.1

Expand All @@ -3700,6 +3707,31 @@ Run an aggregate operation on `db.csfle` with the following pipeline:

Expect an exception to be thrown with a message containing the substring `Upgrade`.

#### Case 10: `db.qe` joins `db.non_csfle_schema`

Test requires server 8.2+ and mongocryptd/crypt_shared 8.2+.

Recreate `encryptedClient` with the same `AutoEncryptionOpts` as the setup. (Recreating prevents schema caching from
impacting the test).

Run an aggregate operation on `db.qe` with the following pipeline:

```json
[
{"$match" : {"qe" : "qe"}},
{
"$lookup" : {
"from" : "non_csfle_schema",
"as" : "matched",
"pipeline" : [ {"$match" : {"non_csfle_schema" : "non_csfle_schema"}}, {"$project" : {"_id" : 0, "__safeContent__" : 0}} ]
}
},
{"$project" : {"_id" : 0, "__safeContent__" : 0}}
]
```

Expect one document to be returned matching: `{"qe" : "qe", "matched" : [ {"non_csfle_schema" : "non_csfle_schema"} ]}`.

### 26. Custom AWS Credentials

These tests require valid AWS credentials for the remote KMS provider via the secrets manager (FLE_AWS_KEY and
Expand Down
Loading