Remove helpers

aclark4life · aclark4life · commit eea4b1095727 · 2025-08-01T19:28:28.000-04:00
diff --git a/django_mongodb_backend/encryption.py b/django_mongodb_backend/encryption.py
@@ -1,63 +1,4 @@
-# Queryable Encryption helper classes and settings
-
-import os
-
-from .fields import has_encrypted_fields
-
-KMS_CREDENTIALS = {
-    "aws": {
-        "key": os.getenv("AWS_KEY_ARN", ""),
-        "region": os.getenv("AWS_KEY_REGION", ""),
-    },
-    "azure": {
-        "keyName": os.getenv("AZURE_KEY_NAME", ""),
-        "keyVaultEndpoint": os.getenv("AZURE_KEY_VAULT_ENDPOINT", ""),
-    },
-    "gcp": {
-        "projectId": os.getenv("GCP_PROJECT_ID", ""),
-        "location": os.getenv("GCP_LOCATION", ""),
-        "keyRing": os.getenv("GCP_KEY_RING", ""),
-        "keyName": os.getenv("GCP_KEY_NAME", ""),
-    },
-    "kmip": {},
-    "local": {},
-}
-
-KMS_PROVIDERS = {
-    "aws": {},
-    "azure": {},
-    "gcp": {},
-    "kmip": {
-        "endpoint": os.getenv("KMIP_KMS_ENDPOINT", "not a valid endpoint"),
-    },
-    "local": {
-        "key": bytes.fromhex(
-            "000102030405060708090a0b0c0d0e0f"
-            "101112131415161718191a1b1c1d1e1f"
-            "202122232425262728292a2b2c2d2e2f"
-            "303132333435363738393a3b3c3d3e3f"
-            "404142434445464748494a4b4c4d4e4f"
-            "505152535455565758595a5b5c5d5e5f"
-        )
-    },
-}
-
-
-class EncryptedRouter:
-    def allow_migrate(self, db, app_label, model_name=None, model=None, **hints):
-        if model:
-            return db == ("other" if has_encrypted_fields(model) else "default")
-        return db == "default"
-
-    def db_for_read(self, model, **hints):
-        if has_encrypted_fields(model):
-            return "other"
-        return "default"
-
-    db_for_write = db_for_read
-
-    def kms_provider(self, model):
-        return "local"
+# Queryable Encryption helper classes
 
 
 class EqualityQuery(dict):
diff --git a/tests/encryption_/tests.py b/tests/encryption_/tests.py
@@ -1,5 +1,4 @@
 import importlib
-import os
 from datetime import datetime, time, timedelta
 from io import StringIO
 from unittest.mock import patch
@@ -9,7 +8,7 @@
 from bson.binary import Binary
 from django.core.management import call_command
 from django.db import connections, models
-from django.test import TestCase, TransactionTestCase, modify_settings, override_settings
+from django.test import TransactionTestCase, modify_settings, override_settings
 
 from django_mongodb_backend.encryption import EqualityQuery
 from django_mongodb_backend.fields import EncryptedFieldMixin
@@ -351,51 +350,3 @@ def test_patient(self):
         self.assertEqual(len(list(patients)), 1)
         records = connections["other"].database.encryption__patientrecord.find()
         self.assertTrue("__safeContent__" in records[0])
-
-
-class KMSCredentialsTests(TestCase):
-    def test_env(self):
-        with patch.dict(os.environ, {}, clear=True):
-            encryption = reload_module("django_mongodb_backend.encryption")
-            self.assertEqual(encryption.KMS_CREDENTIALS["aws"]["key"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["aws"]["region"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["azure"]["keyName"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["azure"]["keyVaultEndpoint"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["projectId"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["location"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["keyRing"], "")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["keyName"], "")
-        env = {
-            "AWS_KEY_ARN": "TestArn",
-            "AWS_KEY_REGION": "us-x-test",
-            "AZURE_KEY_NAME": "azure-key",
-            "AZURE_KEY_VAULT_ENDPOINT": "https://example.vault.azure.net/",
-            "GCP_PROJECT_ID": "gcp-test-prj",
-            "GCP_LOCATION": "test-loc",
-            "GCP_KEY_RING": "ring1",
-            "GCP_KEY_NAME": "gcp-key",
-        }
-        with patch.dict(os.environ, env, clear=True):
-            encryption = reload_module("django_mongodb_backend.encryption")
-            self.assertEqual(encryption.KMS_CREDENTIALS["azure"]["keyName"], "azure-key")
-            self.assertEqual(
-                encryption.KMS_CREDENTIALS["azure"]["keyVaultEndpoint"],
-                "https://example.vault.azure.net/",
-            )
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["projectId"], "gcp-test-prj")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["location"], "test-loc")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["keyRing"], "ring1")
-            self.assertEqual(encryption.KMS_CREDENTIALS["gcp"]["keyName"], "gcp-key")
-
-
-class KMSProvidersTests(TestCase):
-    def test_env(self):
-        with patch.dict(os.environ, {}, clear=True):
-            encryption = reload_module("django_mongodb_backend.encryption")
-            self.assertEqual(encryption.KMS_PROVIDERS["kmip"]["endpoint"], "not a valid endpoint")
-        env = {
-            "KMIP_KMS_ENDPOINT": "kmip://loc",
-        }
-        with patch.dict(os.environ, env, clear=True):
-            encryption = reload_module("django_mongodb_backend.encryption")
-            self.assertEqual(encryption.KMS_PROVIDERS["kmip"]["endpoint"], "kmip://loc")
