MongoDB Client Side Field Level Encryption - NodeJS Driver - The keyAltNames field is not created in the Data Key Document in the local key vault
I have been following this guide - How to use MongoDB Client-Side Field Level Encryption (CSFLE) with Node.js/ to test out the MongoDB CSFLE.
In doing so, in the step of creating the data key in local key vault store https://developer.mongodb.com/how-to/client-side-field-level-encryption-csfle-mongodb-node/#create-a-data-key-in-mongodb-for-encrypting-and-decrypting-document-fields the data key successfully is created but the keyAltName is not attached to the data key’s document.
I tested this multiple times and there is nothing wrong in my code and I’m following the guide as it is. I can’t understand what is causing this issue. The data key creation is successful but without the keyAltNames field. A help here would be really appreciated.
The code related to Data Key Document Creation
async findOrCreateDataKey(client) {
const encryption = new ClientEncryption(client, {
keyVaultNamespace: this.keyVaultNamespace,
kmsProviders: this.kmsProviders
})
await this.ensureUniqueIndexOnKeyVault(client)
let dataKey = await client
.db(this.keyDB)
.collection(this.keyColl)
.findOne({ keyAltNames: { $in: [this.keyAltNames] } })
if (dataKey === null) {
dataKey = await encryption.createDataKey("local", {
keyAltNames: [this.keyAltNames]
})
return dataKey.toString("base64")
}
return dataKey["_id"].toString("base64")
}
}
Resulting Document
Package JSON MongoDB Driver/ MongoDB Client Side Encryption NPM Package Versions
"mongodb": "^3.6.0",
"mongodb-client-encryption": "^1.2.1"
EDIT - This issue is now fixed by the MongoDB team. Refer attached issue 1.
There is all-ready a ticket in place to fix this issue.
Please visit following thread which was opened by my-self within MongoDB Forums to obtain more info. -> https://developer.mongodb.com/community/forums/t/nodejs-the-keyaltnames-field-is-not-created-when-creating-the-data-key-in-mongodb-client-side-field-level-encryption/15875/3
Based on the comments in the above thread, one solution is to update the local keyVault document after its created and add the keyAltName field with its value. This seems to be the only viable fix until MongoDB team ships a fix for this in a future release.
- MongoDB Authentication Issues with Node.js and Mongo-Express in Docker Compose setup
- How does minecraft actually connect to a server?
- MongoDB Authentication failes for any user
- Processing an exception through Apollo Server (NestJS)
- Why doesn't CSS work when I deploy the Next.js sample project in production?
- Next.js form works locally but not on live server
- fs.readFileSync is not file relative? Node.js
- How do I completely uninstall Node.js, and reinstall from beginning (Mac OS X)
- Quasar Error: Cannot find module 'ajv/dist/compile/codegen'
- What does --save-dev (or -D) mean in npm install grunt --save-dev?
- What If Session Expires While User Is Still On The Website
- Deleting `package-lock.json` to Resolve Conflicts quickly
- Upgrading Node.js to the latest version
- Run of a next js app stuck, npm run dev doesn't work
- Mustache(-like) template engine for Express?
- How to list npm user-installed packages?
- How do I check Content-Type using ExpressJS?
- Can't run "node index.js" due to a syntaxError
- What happens if NPM ever goes belly up?
- npm install takes forever when running docker-compose
- Remix run: Authentication succeeds on validation failures
- Fixing npm path in Windows 8 and 10
- How to add a custom script to package.json that runs a javascript file?
- node-fetch azure document translator
- Unable to import ESM module in Nestjs
- how ca I fix this error after exacting npx cap add android?
- multer-gridfs error " TypeError: Cannot read properties of undefined (reading '_id') "
- How to resolve Node.js: "Error: ENOENT: no such file or directory"
- Write the contents of node debug log to file
- How to use promisify() with the spawn() function for the 'child_process'?