Code review fixes

aclark4life · aclark4life · commit a8d2aa4e8347 · 2025-07-31T19:15:34.000-04:00
diff --git a/docs/source/ref/models/fields.rst b/docs/source/ref/models/fields.rst
@@ -299,7 +299,6 @@ These indexes use 0-based indexing.
     As described above for :class:`EmbeddedModelField`,
     :djadmin:`makemigrations` does not yet detect changes to embedded models.
 
-
 ``ObjectIdAutoField``
 ---------------------
 
@@ -322,33 +321,33 @@ Encrypted fields are used to store sensitive data with MongoDB's Queryable
 Encryption feature. They are subclasses of Django's built-in fields, and
 they encrypt the data before storing it in the database.
 
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| Encrypted Field                       | Django Field                                                                                                  |
-+=======================================+===============================================================================================================+
-| ``EncryptedBigIntegerField``          | `BigIntegerField <https://docs.djangoproject.com/en/stable/ref/models/fields/#bigintegerfield>`__             |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedBooleanField``             | `BooleanField <https://docs.djangoproject.com/en/stable/ref/models/fields/#booleanfield>`__                   |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedCharField``                | `CharField <https://docs.djangoproject.com/en/stable/ref/models/fields/#charfield>`__                         |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedDateField``                | `DateField <https://docs.djangoproject.com/en/stable/ref/models/fields/#datefield>`__                         |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedDateTimeField``            | `DateTimeField <https://docs.djangoproject.com/en/stable/ref/models/fields/#datetimefield>`__                 |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedDecimalField``             | `DecimalField <https://docs.djangoproject.com/en/stable/ref/models/fields/#decimalfield>`__                   |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedFloatField``               | `FloatField <https://docs.djangoproject.com/en/stable/ref/models/fields/#floatfield>`__                       |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedGenericIPAddressField``    | `GenericIPAddressField <https://docs.djangoproject.com/en/stable/ref/models/fields/#genericipaddressfield>`__ |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedIntegerField``             | `IntegerField <https://docs.djangoproject.com/en/stable/ref/models/fields/#integerfield>`__                   |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedTextField``                | `TextField <https://docs.djangoproject.com/en/stable/ref/models/fields/#textfield>`__                         |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedTimeField``                | `TimeField <https://docs.djangoproject.com/en/stable/ref/models/fields/#timefield>`__                         |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
-| ``EncryptedURLField``                 | `URLField <https://docs.djangoproject.com/en/stable/ref/models/fields/#urlfield>`__                           |
-+---------------------------------------+---------------------------------------------------------------------------------------------------------------+
++---------------------------------------+--------------------------------------------------+
+| Encrypted Field                       | Django Field                                     |
++=======================================+==================================================+
+| ``EncryptedBigIntegerField``          | :class:`~django.db.models.BigIntegerField`       |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedBooleanField``             | :class:`~django.db.models.BooleanField`          |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedCharField``                | :class:`~django.db.models.CharField`             |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedDateField``                | :class:`~django.db.models.DateField`             |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedDateTimeField``            | :class:`~django.db.models.DateTimeField`         |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedDecimalField``             | :class:`~django.db.models.DecimalField`          |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedFloatField``               | :class:`~django.db.models.FloatField`            |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedGenericIPAddressField``    | :class:`~django.db.models.GenericIPAddressField` |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedIntegerField``             | :class:`~django.db.models.IntegerField`          |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedTextField``                | :class:`~django.db.models.TextField`             |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedTimeField``                | :class:`~django.db.models.TimeField`             |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedURLField``                 | :class:`~django.db.models.URLField`              |
++---------------------------------------+--------------------------------------------------+
 
 .. _encrypted-model-unsupported-fields:
 
@@ -357,8 +356,8 @@ Unsupported fields
 
 The following fields are supported by Django MongoDB Backend but not by Queryable Encryption.
 
-+---------------------------------------+--------------------------------------------------------------------------------------------------------+
-| ``EncryptedDurationField``            | `DurationField <https://docs.djangoproject.com/en/stable/ref/models/fields/#durationfield>`__          |
-+---------------------------------------+--------------------------------------------------------------------------------------------------------+
-| ``EncryptedSlugField``                | `SlugField <https://docs.djangoproject.com/en/stable/ref/models/fields/#slugfield>`__                  |
-+---------------------------------------+--------------------------------------------------------------------------------------------------------+
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedDurationField``            | :class:`~django.db.models.DurationField`         |
++---------------------------------------+--------------------------------------------------+
+| ``EncryptedSlugField``                | :class:`~django.db.models.SlugField`             |
++---------------------------------------+--------------------------------------------------+
diff --git a/tests/backend_/test_features.py b/tests/backend_/test_features.py
@@ -46,20 +46,19 @@ def mocked_command(command):
             self.assertIs(connection.features.supports_transactions, False)
 
 
-# FIXME: On evergreen.
-# class SupportsQueryableEncryptionTests(TestCase):
-#     def setUp(self):
-#         # Clear the cached property.
-#         connection.features.__dict__.pop("supports_queryable_encryption", None)
-#
-#     def tearDown(self):
-#         del connection.features.supports_queryable_encryption
-#
-#     def test_supports_queryable_encryption(self):
-#         def mocked_command(command):
-#             if command == "buildInfo":
-#                 return {"modules": ["enterprise"]}
-#             raise Exception("Unexpected command")
-#
-#         with patch("pymongo.synchronous.database.Database.command", wraps=mocked_command):
-#             self.assertIs(connection.features.supports_queryable_encryption, True)
+class SupportsQueryableEncryptionTests(TestCase):
+    def setUp(self):
+        # Clear the cached property.
+        connection.features.__dict__.pop("supports_queryable_encryption", None)
+
+    def tearDown(self):
+        del connection.features.supports_queryable_encryption
+
+    def test_supports_queryable_encryption(self):
+        def mocked_command(command):
+            if command == "buildInfo":
+                return {"modules": ["enterprise"]}
+            raise Exception("Unexpected command")
+
+        with patch("pymongo.synchronous.database.Database.command", wraps=mocked_command):
+            self.assertIs(connection.features.supports_queryable_encryption, True)
diff --git a/tests/encryption_/models.py b/tests/encryption_/models.py
@@ -21,20 +21,26 @@
 class Appointment(EncryptedModel):
     time = EncryptedTimeField(queries=EqualityQuery())
 
+    class Meta:
+        required_db_features = {"supports_queryable_encryption"}
+
 
 class Billing(EncryptedModel):
     cc_type = EncryptedCharField(max_length=20, queries=EqualityQuery())
     cc_number = EncryptedBigIntegerField(queries=EqualityQuery())
     account_balance = EncryptedDecimalField(max_digits=10, decimal_places=2, queries=RangeQuery())
 
     class Meta:
-        db_table = "billing"
+        required_db_features = {"supports_queryable_encryption"}
 
 
 class PatientPortalUser(EncryptedModel):
     ip_address = EncryptedGenericIPAddressField(queries=EqualityQuery())
     url = EncryptedURLField(queries=EqualityQuery())
 
+    class Meta:
+        required_db_features = {"supports_queryable_encryption"}
+
 
 class PatientRecord(EncryptedModel):
     ssn = EncryptedCharField(max_length=11, queries=EqualityQuery())
@@ -47,7 +53,7 @@ class PatientRecord(EncryptedModel):
     # billing =
 
     class Meta:
-        db_table = "patientrecord"
+        required_db_features = {"supports_queryable_encryption"}
 
 
 class Patient(EncryptedModel):
@@ -61,8 +67,5 @@ class Patient(EncryptedModel):
     # TODO: Embed PatientRecord model
     # patient_record =
 
-+    class Meta:
-+        required_db_features = {"supports_queryable_encryption"}
-+
     class Meta:
-        db_table = "patient"
+        required_db_features = {"supports_queryable_encryption"}
diff --git a/tests/encryption_/tests.py b/tests/encryption_/tests.py
@@ -25,7 +25,7 @@
 from .routers import TestEncryptedRouter
 
 EXPECTED_ENCRYPTED_FIELDS_MAP = {
-    "billing": {
+    "encryption__billing": {
         "fields": [
             {
                 "bsonType": "string",
@@ -47,7 +47,7 @@
             },
         ]
     },
-    "patientrecord": {
+    "encryption__patientrecord": {
         "fields": [
             {
                 "bsonType": "string",
@@ -81,7 +81,7 @@
             },
         ]
     },
-    "patient": {
+    "encryption__patient": {
         "fields": [
             {
                 "bsonType": "int",
@@ -327,7 +327,7 @@ def test_patientrecord(self):
             # get_new_connection will return the encrypted connection
             # from the connection pool.
             connection = pymongo.MongoClient(**conn_params)
-            patientrecords = connection["test_other"].patientrecord.find()
+            patientrecords = connection["test_other"].encryption__patientrecord.find()
             ssn = patientrecords[0]["ssn"]
             self.assertTrue(isinstance(ssn, Binary))
             connection.close()
@@ -349,25 +349,11 @@ def test_patient(self):
         )
 
         # Test decrypted patient record in encrypted database.
-        patients = connections["other"].database.patient.find()
+        patients = connections["other"].database.encryption__patient.find()
         self.assertEqual(len(list(patients)), 1)
-        records = connections["other"].database.patientrecord.find()
+        records = connections["other"].database.encryption__patientrecord.find()
         self.assertTrue("__safeContent__" in records[0])
 
-    def test_no_auto_encryption_opts(self):
-        """
-        Ensure that the encrypted fields map is not set in the client
-        when auto_encryption_opts is not set.
-        """
-        Patient.objects.using("default").create(
-            patient_id=2,
-            patient_name="John Doe 2",
-            patient_notes="patient notes " * 20,
-            registration_date=datetime(2024, 10, 1, 12, 0, 0),
-            is_active=True,
-            email="john.doe.2@example.com",
-        ).save()
-
 
 class KMSCredentialsTests(TestCase):
     def test_env(self):
