Chilkat Online Tools

SQL Server / MongoDB Atlas / Enable and Configure Encryption at Rest using Customer Key Management for One Project Copy

Back to Collection Items

-- Important: See this note about string length limitations for strings returned by sp_OAMethod calls.
--
CREATE PROCEDURE ChilkatSample
AS
BEGIN
    DECLARE @hr int
    DECLARE @iTmp0 int
    -- Important: Do not use nvarchar(max).  See the warning about using nvarchar(max).
    DECLARE @sTmp0 nvarchar(4000)
    -- This example assumes the Chilkat API to have been previously unlocked.
    -- See Global Unlock Sample for sample code.

    DECLARE @http int
    EXEC @hr = sp_OACreate 'Chilkat_9_5_0.Http', @http OUT
    IF @hr <> 0
    BEGIN
        PRINT 'Failed to create ActiveX component'
        RETURN
    END

    DECLARE @success int

    EXEC sp_OASetProperty @http, 'DigestAuth', 1
    EXEC sp_OASetProperty @http, 'Login', 'username'
    EXEC sp_OASetProperty @http, 'Password', 'password'

    -- Use this online tool to generate code from sample JSON: Generate Code to Create JSON

    -- The following JSON is sent in the request body.

    -- {
    --   "azureKeyVault": {
    --     "enabled": true,
    --     "clientID": "g54f9e2-89e3-40fd-8188-EXAMPLEID",
    --     "azureEnvironment": "AZURE",
    --     "subscriptionID": "0ec944e3-g725-44f9-a147-EXAMPLEID",
    --     "resourceGroupName": "ExampleRGName",
    --     "keyVaultName": "EXAMPLEKeyVault",
    --     "keyIdentifier": "https://EXAMPLEKeyVault.vault.azure.net/keys/EXAMPLEKey/d891821e3d364e9eb88fbd3d11807b86",
    --     "secret": "EXAMPLESECRET",
    --     "tenantID": "e8e4b6ba-ff32-4c88-a9af-EXAMPLEID"
    --   }
    -- }

    DECLARE @json int
    EXEC @hr = sp_OACreate 'Chilkat_9_5_0.JsonObject', @json OUT

    EXEC sp_OAMethod @json, 'UpdateBool', @success OUT, 'azureKeyVault.enabled', 1
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.clientID', 'g54f9e2-89e3-40fd-8188-EXAMPLEID'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.azureEnvironment', 'AZURE'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.subscriptionID', '0ec944e3-g725-44f9-a147-EXAMPLEID'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.resourceGroupName', 'ExampleRGName'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.keyVaultName', 'EXAMPLEKeyVault'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.keyIdentifier', 'https://EXAMPLEKeyVault.vault.azure.net/keys/EXAMPLEKey/d891821e3d364e9eb88fbd3d11807b86'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.secret', 'EXAMPLESECRET'
    EXEC sp_OAMethod @json, 'UpdateString', @success OUT, 'azureKeyVault.tenantID', 'e8e4b6ba-ff32-4c88-a9af-EXAMPLEID'

    DECLARE @sbRequestBody int
    EXEC @hr = sp_OACreate 'Chilkat_9_5_0.StringBuilder', @sbRequestBody OUT

    EXEC sp_OAMethod @json, 'EmitSb', @success OUT, @sbRequestBody

    DECLARE @resp int
    EXEC sp_OAMethod @http, 'PTextSb', @resp OUT, 'PATCH', 'https://domain.com/api/atlas/{{version}}/groups/{{ProjectID}}/encryptionAtRest', @sbRequestBody, 'utf-8', 'application/json', 0, 0
    EXEC sp_OAGetProperty @http, 'LastMethodSuccess', @iTmp0 OUT
    IF @iTmp0 = 0
      BEGIN
        EXEC sp_OAGetProperty @http, 'LastErrorText', @sTmp0 OUT
        PRINT @sTmp0
        EXEC @hr = sp_OADestroy @http
        EXEC @hr = sp_OADestroy @json
        EXEC @hr = sp_OADestroy @sbRequestBody
        RETURN
      END

    EXEC sp_OAGetProperty @resp, 'StatusCode', @iTmp0 OUT
    PRINT @iTmp0
    EXEC sp_OAGetProperty @resp, 'BodyStr', @sTmp0 OUT
    PRINT @sTmp0
    EXEC @hr = sp_OADestroy @resp


    EXEC @hr = sp_OADestroy @http
    EXEC @hr = sp_OADestroy @json
    EXEC @hr = sp_OADestroy @sbRequestBody


END
GO

Curl Command

curl -X PATCH
	--digest -u 'username:password'
	-d '{
    "azureKeyVault": {
        "enabled": true,
        "clientID": "g54f9e2-89e3-40fd-8188-EXAMPLEID",
        "azureEnvironment": "AZURE",
        "subscriptionID": "0ec944e3-g725-44f9-a147-EXAMPLEID",
        "resourceGroupName": "ExampleRGName",
        "keyVaultName": "EXAMPLEKeyVault",
        "keyIdentifier": "https://EXAMPLEKeyVault.vault.azure.net/keys/EXAMPLEKey/d891821e3d364e9eb88fbd3d11807b86",
        "secret": "EXAMPLESECRET",
        "tenantID": "e8e4b6ba-ff32-4c88-a9af-EXAMPLEID"
    }
}'
https://domain.com/api/atlas/{{version}}/groups/{{ProjectID}}/encryptionAtRest

Postman Collection Item JSON

{
  "name": "Enable and Configure Encryption at Rest using Customer Key Management for One Project Copy",
  "request": {
    "method": "PATCH",
    "header": [
    ],
    "body": {
      "mode": "raw",
      "raw": "{\n    \"azureKeyVault\": {\n        \"enabled\": true,\n        \"clientID\": \"g54f9e2-89e3-40fd-8188-EXAMPLEID\",\n        \"azureEnvironment\": \"AZURE\",\n        \"subscriptionID\": \"0ec944e3-g725-44f9-a147-EXAMPLEID\",\n        \"resourceGroupName\": \"ExampleRGName\",\n        \"keyVaultName\": \"EXAMPLEKeyVault\",\n        \"keyIdentifier\": \"https://EXAMPLEKeyVault.vault.azure.net/keys/EXAMPLEKey/d891821e3d364e9eb88fbd3d11807b86\",\n        \"secret\": \"EXAMPLESECRET\",\n        \"tenantID\": \"e8e4b6ba-ff32-4c88-a9af-EXAMPLEID\"\n    }\n}",
      "options": {
        "raw": {
          "language": "json"
        }
      }
    },
    "url": {
      "raw": "{{base_url}}/api/atlas/{{version}}/groups/{{ProjectID}}/encryptionAtRest",
      "host": [
        "{{base_url}}"
      ],
      "path": [
        "api",
        "atlas",
        "{{version}}",
        "groups",
        "{{ProjectID}}",
        "encryptionAtRest"
      ]
    },
    "description": "https://docs.atlas.mongodb.com/reference/api/enable-configure-encryptionatrest/"
  },
  "response": [
  ]
}