DOCSP-23618 adds mongosh quickstart (via includes) (#1905) (#1968)

* DOCSP-23618 includes updates

* adds js files for literalincludes

Author: jmd-mongo

source/core/queryable-encryption/quick-start.txt

@@ -46,6 +46,11 @@ Before You Get Started
 
    .. tabs::
 
+      .. tab:: mongosh
+         :tabid: shell
+
+         `Complete mongosh Application <{+sample-app-url-qe+}/mongosh/local/reader/>`__
+
       .. tab:: Node.js
          :tabid: nodejs
 
@@ -96,6 +101,12 @@ Procedure
 
          .. tabs-drivers::
 
+            .. tab::
+               :tabid: shell
+
+               To view the complete code for making a {+dek-long+}, see
+               `our Github repository <{+sample-app-url-qe+}/mongosh/local/reader/make_data_key.js>`__.
+
             .. tab::
                :tabid: nodejs
 
@@ -139,6 +150,12 @@ Procedure
 
          .. tabs-drivers::
 
+            .. tab::
+               :tabid: shell
+
+               To view the complete code for inserting an encrypted document, see
+               `our Github repository <{+sample-app-url-qe+}/mongosh/local/reader/insert_encrypted_document.js>`__.
+
             .. tab::
                :tabid: nodejs
 
@@ -178,6 +195,12 @@ Procedure
 
          .. tabs-drivers::
 
+            .. tab::
+               :tabid: shell
+
+               To view the complete code for finding an encrypted document, see
+               `our Github repository <{+sample-app-url-qe+}/mongosh/local/reader/insert_encrypted_document.js>`__.
+
             .. tab::
                :tabid: nodejs
 

source/includes/generated/in-use-encryption/queryable-encryption/mongosh/aws/reader/insert_encrypted_document.js

@@ -0,0 +1,120 @@
+// start-key-vault
+const keyVaultDB = "encryption";
+const keyVaultColl = "__keyVault";
+const keyVaultNamespace = `${keyVaultDB}.${keyVaultColl}`;
+const secretDB = "medicalRecords";
+const secretCollection = "patients";
+// end-key-vault
+
+// start-kmsproviders
+const kmsProviders = {
+  aws: {
+    accessKeyId: "<Your AWS Access Key ID>",
+    secretAccessKey: "<Your AWS Secret Access Key>",
+  },
+};
+// end-kmsproviders
+
+async function run() {
+  // start-schema
+  const uri = "<Your Connection String>";
+  const unencryptedClient = Mongo(uri);
+  const autoEncryptionOpts = { kmsProviders, keyVaultNamespace };
+
+  const encClient = Mongo(uri, autoEncryptionOpts);
+  const keyVault = encClient.getKeyVault();
+  const keyVaultClient = unencryptedClient
+    .getDB(keyVaultDB)
+    .getCollection(keyVaultColl);
+
+  const dek1 = keyVaultClient.findOne({ keyAltNames: "dataKey1" });
+  const dek2 = keyVaultClient.findOne({ keyAltNames: "dataKey2" });
+  const dek3 = keyVaultClient.findOne({ keyAltNames: "dataKey3" });
+  const dek4 = keyVaultClient.findOne({ keyAltNames: "dataKey4" });
+
+  const secretDB = "medicalRecords";
+  const secretColl = "patients";
+
+  const encryptedFieldsMap = {
+    [`${secretDB}.${secretColl}`]: {
+      fields: [
+        {
+          keyId: dek1._id,
+          path: "patientId",
+          bsonType: "int",
+          queries: { queryType: "equality" },
+        },
+        {
+          keyId: dek2._id,
+          path: "medications",
+          bsonType: "array",
+        },
+        {
+          keyId: dek3._id,
+          path: "patientRecord.ssn",
+          bsonType: "string",
+          queries: { queryType: "equality" },
+        },
+        {
+          keyId: dek4._id,
+          path: "patientRecord.billing",
+          bsonType: "object",
+        },
+      ],
+    },
+  };
+  // end-schema
+
+  // start-extra-options
+  // end-extra-options
+
+  // start-client
+  const autoEncryptionOptions = {
+    keyVaultNamespace: keyVaultNamespace,
+    kmsProviders: kmsProviders,
+    bypassQueryAnalysis: false,
+    encryptedFieldsMap: encryptedFieldsMap,
+  };
+
+  const encryptedClient = Mongo(uri, autoEncryptionOptions);
+  const encryptedColl = encryptedClient
+    .getDB(secretDB)
+    .getCollection(secretColl);
+  const unencryptedColl = unencryptedClient
+    .getDB(secretDB)
+    .getCollection(secretColl);
+  // end-client
+
+  try {
+    // start-insert
+    encryptedColl.insertOne({
+      firstName: "Jon",
+      lastName: "Doe",
+      patientId: 12345678,
+      address: "157 Electric Ave.",
+      patientRecord: {
+        ssn: "987-65-4320",
+        billing: {
+          type: "Visa",
+          number: "4111111111111111",
+        },
+      },
+      medications: ["Atorvastatin", "Levothyroxine"],
+    });
+    // end-insert
+
+    // start-find
+    console.log("Finding a document with regular (non-encrypted) client.");
+    console.log(unencryptedColl.findOne({ firstName: /Jon/ }));
+    console.log(
+      "Finding a document with encrypted client, searching on an encrypted field"
+    );
+    console.log(encryptedColl.findOne({ "patientRecord.ssn": "987-65-4320" }));
+    // end-find
+  } catch (error) {
+    console.log(error);
+    throw new Error(error);
+  }
+}
+
+run().catch(console.dir);

source/includes/generated/in-use-encryption/queryable-encryption/mongosh/aws/reader/make_data_key.js

@@ -0,0 +1,123 @@
+const keyVaultDatabase = "encryption";
+const keyVaultCollection = "__keyVault";
+const keyVaultNamespace = `${keyVaultDatabase}.${keyVaultCollection}`;
+const secretDB = "medicalRecords";
+const secretCollection = "patients";
+
+// start-kmsproviders
+const provider = "aws";
+const kmsProviders = {
+  aws: {
+    accessKeyId: "<Your AWS Access Key ID>",
+    secretAccessKey: "<Your AWS Secret Access Key>",
+  },
+};
+// end-kmsproviders
+
+// start-datakeyopts
+const masterKey = {
+  key: "<Your AWS Key ARN>",
+  region: "<Your AWS Key Region>",
+};
+// end-datakeyopts
+
+async function run() {
+  // start-create-index
+  const uri = "<Your Connection String>";
+  const keyVaultClient = Mongo(uri);
+  const keyVaultDB = keyVaultClient.getDB(keyVaultDatabase);
+  // Drop the Key Vault Collection in case you created this collection
+  // in a previous run of this application.
+  keyVaultDB.dropDatabase();
+  keyVaultDB.createCollection(keyVaultCollection);
+
+  const keyVaultColl = keyVaultDB.getCollection(keyVaultCollection);
+  keyVaultColl.createIndex(
+    { keyAltNames: 1 },
+    {
+      unique: true,
+      partialFilterExpression: { keyAltNames: { $exists: true } },
+    }
+  );
+  // end-create-index
+
+  // start-create-dek
+  const autoEncryptionOpts = {
+    keyVaultNamespace: keyVaultNamespace,
+    kmsProviders: kmsProviders,
+  };
+
+  // start-create-dek
+  const encClient = Mongo(uri, autoEncryptionOpts);
+  const keyVault = encClient.getKeyVault();
+
+  const dek1 = keyVault.createKey(provider, {
+    masterKey: masterKey,
+    keyAltNames: ["dataKey1"],
+  });
+  const dek2 = keyVault.createKey(provider, {
+    masterKey: masterKey,
+    keyAltNames: ["dataKey2"],
+  });
+  const dek3 = keyVault.createKey(provider, {
+    masterKey: masterKey,
+    keyAltNames: ["dataKey3"],
+  });
+  const dek4 = keyVault.createKey(provider, {
+    masterKey: masterKey,
+    keyAltNames: ["dataKey4"],
+  });
+  // end-create-dek
+
+  // start-create-enc-collection
+  const encryptedFieldsMap = {
+    [`${secretDB}.${secretCollection}`]: {
+      fields: [
+        {
+          keyId: dek1,
+          path: "patientId",
+          bsonType: "int",
+          queries: { queryType: "equality" },
+        },
+        {
+          keyId: dek2,
+          path: "medications",
+          bsonType: "array",
+        },
+        {
+          keyId: dek3,
+          path: "patientRecord.ssn",
+          bsonType: "string",
+          queries: { queryType: "equality" },
+        },
+        {
+          keyId: dek4,
+          path: "patientRecord.billing",
+          bsonType: "object",
+        },
+      ],
+    },
+  };
+
+  try {
+    const autoEncryptionOptions = {
+      keyVaultNamespace: keyVaultNamespace,
+      kmsProviders: kmsProviders,
+      encryptedFieldsMap: encryptedFieldsMap,
+    };
+
+    const encClient = Mongo(uri, autoEncryptionOptions);
+    const newEncDB = encClient.getDB(secretDB);
+    // Drop the encrypted collection in case you created this collection
+    // in a previous run of this application.
+    newEncDB.dropDatabase();
+    newEncDB.createCollection(secretCollection);
+    console.log("Created encrypted collection!");
+    // end-create-enc-collection
+  } catch (error) {
+    console.log(error);
+    throw new Error(error);
+  }
+}
+
+run().catch(console.dir);