mongocrypt_encrypt_finish¶
Synopsis¶
#include <mongocrypt.h>
bool
mongocrypt_encrypt_finish (mongocrypt_t *crypt,
const mongocrypt_binary_t *marked_cmd,
const mongocrypt_binary_t *datakeys,
mongocrypt_binary_t *encrypted_cmd,
mongocrypt_error_t *error);
Parameters¶
crypt
: the mongocrypt_t handle.marked_cmd
: a BSON document representing a MongoDB command, where values requiring encryption have been replaced with FLE markings.datakeys
: a BSON document containing data keys requested before.encrypted_cmd
: set to a transformed version ofmarked_cmd
, where FLE markings have been replaced by FLE ciphertexts.error
: set to an error. The caller must call mongocrypt_error_destroy after (even if no error occurred).
datakeys¶
datakeys
is a BSON document mapping key vault aliases to arrays of data keys.
{
"default": [
{
"_id" : UUID("148d6906-9648-4b32-ba08-8497ad838229"),
"status" : 1,
"masterKey" : { ... },
"creationDate" : ISODate("2018-12-31T14:23:48.172Z"),
"updatedDate" : ISODate("2018-12-31T14:23:48.172Z"),
"keyMaterial" : BinData(0,"..."),
}
...
],
"alias": [
{ ... }
]
...
}
Returns¶
True on success, false on failure. On failure, error
is populated.
See Also¶
- mongocrypt_encrypt_prepare: The previous call in the sequence to encrypt.