FLE implemenation for Spring Data Couchbase.

Closes #763.

Author: mikereiche

spring-data-couchbase/src/main/java/org/springframework/data/couchbase/config/AbstractCouchbaseConfiguration.java

@@ -168,7 +168,6 @@ public ClusterEnvironment couchbaseClusterEnvironment() {
 	 * @param builder the builder that can be customized.
 	 */
 	protected void configureEnvironment(final ClusterEnvironment.Builder builder) {
-
 	}
 
 	@Bean(name = BeanNames.COUCHBASE_TEMPLATE)

spring-data-couchbase/src/main/java/org/springframework/data/couchbase/core/convert/AbstractCouchbaseConverter.java

@@ -18,6 +18,7 @@
 
 import java.util.Collections;
 
+import com.couchbase.client.java.query.QueryScanConsistency;
 import org.springframework.beans.factory.InitializingBean;
 import org.springframework.core.convert.ConversionService;
 import org.springframework.core.convert.TypeDescriptor;

spring-data-couchbase/src/main/java/org/springframework/data/couchbase/core/convert/CryptoConverter.java

@@ -15,24 +15,31 @@
  */
 package org.springframework.data.couchbase.core.convert;
 
-import java.lang.reflect.Constructor;
-import java.lang.reflect.InvocationTargetException;
 import java.nio.charset.StandardCharsets;
 import java.util.LinkedList;
 import java.util.List;
+import java.util.Locale;
 import java.util.Map;
+import java.util.Optional;
 
+import org.springframework.core.convert.ConversionFailedException;
 import org.springframework.core.convert.ConversionService;
+import org.springframework.core.convert.ConverterNotFoundException;
+import org.springframework.data.convert.CustomConversions;
 import org.springframework.data.convert.PropertyValueConverter;
 import org.springframework.data.convert.ValueConversionContext;
 import org.springframework.data.couchbase.core.mapping.CouchbaseDocument;
 import org.springframework.data.couchbase.core.mapping.CouchbasePersistentEntity;
 import org.springframework.data.couchbase.core.mapping.CouchbasePersistentProperty;
 import org.springframework.data.mapping.PersistentProperty;
+import org.springframework.data.mapping.model.ConvertingPropertyAccessor;
 import org.springframework.util.Assert;
 
 import com.couchbase.client.core.encryption.CryptoManager;
+import com.couchbase.client.core.error.InvalidArgumentException;
+import com.couchbase.client.java.json.JsonArray;
 import com.couchbase.client.java.json.JsonObject;
+import com.couchbase.client.java.json.JsonValue;
 
 /**
  * Encrypt/Decrypted properties annotated with
@@ -54,114 +61,216 @@ public Object read(CouchbaseDocument value, ValueConversionContext<? extends Per
 		if (decrypted == null) {
 			return null;
 		}
-		// it's decrypted into a String. Now figure out how to convert to the property type.
+		// it's decrypted to byte[]. Now figure out how to convert to the property type.
+		return coerceToValueRead(decrypted, (CouchbaseConversionContext) context);
+	}
+
+	@Override
+	public CouchbaseDocument write(Object value, ValueConversionContext<? extends PersistentProperty<?>> context) {
 		CouchbaseConversionContext ctx = (CouchbaseConversionContext) context;
 		CouchbasePersistentProperty property = ctx.getProperty();
-		org.springframework.data.convert.CustomConversions conversions = ctx.getConverter().getConversions();
-		ConversionService svc = ctx.getConverter().conversionService;
+		byte[] plainText = coerceToBytesWrite(property, ctx.getAccessor(), ctx);
+		Map<String, Object> encrypted = cryptoManager().encrypt(plainText, CryptoManager.DEFAULT_ENCRYPTER_ALIAS);
+		return new CouchbaseDocument().setContent(encrypted);
+	}
+
+	private Object coerceToValueRead(byte[] decrypted, CouchbaseConversionContext context) {
+		CouchbasePersistentProperty property = context.getProperty();
+
+		CustomConversions cnvs = context.getConverter().getConversions();
+		ConversionService svc = context.getConverter().getConversionService();
+		Class<?> type = property.getType();
 
-		boolean wasString = false;
-		List<Exception> exceptionList = new LinkedList<>();
 		String decryptedString = new String(decrypted);
-		if (conversions.isSimpleType(property.getType())
-				|| conversions.hasCustomReadTarget(String.class, context.getProperty().getType())) {
-			if (decryptedString.startsWith("\"") && decryptedString.endsWith("\"")) {
-				decryptedString = decryptedString.substring(1, decryptedString.length() - 1);
-				decryptedString = decryptedString.replaceAll("\\\"", "\"");
-				wasString = true;
-			}
+		if ("null".equals(decryptedString)) {
+			return null;
 		}
+		/* this what we would do if we could use a JsonParser with a beanPropertyTypeRef
+		    final JsonParser plaintextParser = p.getCodec().getFactory().createParser(plaintext);
+		plaintextParser.setCodec(p.getCodec());
+		
+		return plaintextParser.readValueAs(beanPropertyTypeRef);
+		 */
 
-		if (conversions.isSimpleType(property.getType())) {
-			if (wasString && conversions.hasCustomReadTarget(String.class, context.getProperty().getType())) {
-				try {
-					return svc.convert(decryptedString, context.getProperty().getType());
-				} catch (Exception e) {
-					exceptionList.add(e);
-				}
-			}
-			if (conversions.hasCustomReadTarget(Long.class, context.getProperty().getType())) {
-				try {
-					return svc.convert(Long.valueOf(decryptedString), property.getType());
-				} catch (Exception e) {
-					exceptionList.add(e);
-				}
-			}
-			if (conversions.hasCustomReadTarget(Double.class, context.getProperty().getType())) {
-				try {
-					return svc.convert(Double.valueOf(decryptedString), property.getType());
-				} catch (Exception e) {
-					exceptionList.add(e);
-				}
-			}
-			if (conversions.hasCustomReadTarget(Boolean.class, context.getProperty().getType())) {
-				try {
-					Object booleanResult = svc.convert(Boolean.valueOf(decryptedString), property.getType());
-					if (booleanResult == null) {
-						throw new Exception("value " + decryptedString + " would not convert to boolean");
-					}
-				} catch (Exception e) {
-					exceptionList.add(e);
-				}
-			}
-			// let's try to find a constructor...
-			try {
-				Constructor<?> constructor = context.getProperty().getType().getConstructor(String.class);
-				return constructor.newInstance(decryptedString);
-			} catch (NoSuchMethodException | InstantiationException | IllegalAccessException | InvocationTargetException e) {
-				exceptionList.add(new Exception("tried to instantiate from constructor taking string arg but got " + e));
-			}
-			// last chance...
+		if (!cnvs.isSimpleType(type) && !type.isArray()) {
+			JsonObject jo = JsonObject.fromJson(decryptedString);
+			CouchbaseDocument source = new CouchbaseDocument().setContent(jo);
+			return context.getConverter().read(property.getTypeInformation(), source);
+		} else {
+			String jsonString = "{\"" + property.getFieldName() + "\":" + decryptedString + "}";
 			try {
-				return ctx.getConverter().getPotentiallyConvertedSimpleRead(decryptedString, property);
-			} catch (Exception e) {
-				exceptionList.add(e);
-				RuntimeException ee = new RuntimeException(
-						"failed to convert " + decryptedString + " due to the following suppressed reasons(s): ");
-				exceptionList.stream().forEach(ee::addSuppressed);
-				throw ee;
+				CouchbaseDocument decryptedDoc = new CouchbaseDocument().setContent(JsonObject.fromJson(jsonString));
+				return context.getConverter().getPotentiallyConvertedSimpleRead(decryptedDoc.get(property.getFieldName()),
+						property);
+			} catch (InvalidArgumentException | ConverterNotFoundException | ConversionFailedException e) {
+				throw new RuntimeException(decryptedString, e);
 			}
-
-		} else {
-			CouchbaseDocument decryptedDoc = new CouchbaseDocument().setContent(JsonObject.fromJson(decrypted));
-			CouchbasePersistentEntity<?> entity = ctx.getConverter().getMappingContext()
-					.getRequiredPersistentEntity(property.getType());
-			return ctx.getConverter().read(entity, decryptedDoc, null);
 		}
 	}
 
-	@Override
-	public CouchbaseDocument write(Object value, ValueConversionContext<? extends PersistentProperty<?>> context) {
+	private byte[] coerceToBytesWrite(CouchbasePersistentProperty property, ConvertingPropertyAccessor accessor,
+			CouchbaseConversionContext context) {
 		byte[] plainText;
-		CouchbaseConversionContext ctx = (CouchbaseConversionContext) context;
-		CouchbasePersistentProperty property = ctx.getProperty();
-		org.springframework.data.convert.CustomConversions conversions = ctx.getConverter().getConversions();
-
-		Class<?> sourceType = context.getProperty().getType();
-		Class<?> targetType = conversions.getCustomWriteTarget(context.getProperty().getType()).orElse(null);
+		CustomConversions cnvs = context.getConverter().getConversions();
 
-		value = ctx.getConverter().getPotentiallyConvertedSimpleWrite(property, ctx.getAccessor(), false);
-		if (conversions.isSimpleType(sourceType)) {
-			String plainString;
-			plainString = (String) value;
-			if (sourceType == String.class || targetType == String.class) {
+		Class<?> sourceType = property.getType();
+		Class<?> targetType = cnvs.getCustomWriteTarget(property.getType()).orElse(null);
+		Object value = context.getConverter().getPotentiallyConvertedSimpleWrite(property, accessor, false);
+		if (value == null) { // null
+			plainText = "null".getBytes(StandardCharsets.UTF_8);
+		} else if (value.getClass().isArray()) { // array
+			JsonArray ja;
+			if (value.getClass().getComponentType().isPrimitive()) {
+				ja = jaFromPrimitiveArray(value);
+			} else {
+				ja = jaFromObjectArray(value, context.getConverter());
+			}
+			plainText = ja.toBytes();
+		} else if (cnvs.isSimpleType(sourceType)) { // simpleType
+			String plainString = value != null ? value.toString() : null;
+			if ((sourceType == String.class || targetType == String.class) || sourceType == Character.class
+					|| sourceType == char.class || Enum.class.isAssignableFrom(sourceType)
+					|| Locale.class.isAssignableFrom(sourceType)) {
+				// TODO use jackson serializer here
 				plainString = "\"" + plainString.replaceAll("\"", "\\\"") + "\"";
 			}
 			plainText = plainString.getBytes(StandardCharsets.UTF_8);
-		} else {
+		} else { // an entity
 			plainText = JsonObject.fromJson(context.read(value).toString().getBytes(StandardCharsets.UTF_8)).toBytes();
 		}
-		Map<String, Object> encrypted = cryptoManager().encrypt(plainText, CryptoManager.DEFAULT_ENCRYPTER_ALIAS);
-		CouchbaseDocument encryptedDoc = new CouchbaseDocument();
-		for (Map.Entry<String, Object> entry : encrypted.entrySet()) {
-			encryptedDoc.put(entry.getKey(), entry.getValue());
-		}
-		return encryptedDoc;
+		return plainText;
 	}
 
 	CryptoManager cryptoManager() {
-		Assert.notNull(cryptoManager, "cryptoManager is null");
+		Assert.notNull(cryptoManager,
+				"cryptoManager needed to encrypt/decrypt but it is null. Override needed for cryptoManager() method of "
+						+ AbstractCouchbaseConverter.class.getName());
 		return cryptoManager;
 	}
 
+	JsonArray jaFromObjectArray(Object value, MappingCouchbaseConverter converter) {
+		CustomConversions cnvs = converter.getConversions();
+		ConversionService svc = converter.getConversionService();
+		JsonArray ja = JsonArray.ja();
+		for (Object o : (Object[]) value) {
+			ja.add(coerceToJson(o, cnvs, svc));
+		}
+		return ja;
+	}
+
+	JsonArray jaFromPrimitiveArray(Object value) {
+		Class<?> component = value.getClass().getComponentType();
+		JsonArray jArray;
+		if (Long.TYPE.isAssignableFrom(component)) {
+			jArray = ja_long((long[]) value);
+		} else if (Integer.TYPE.isAssignableFrom(component)) {
+			jArray = ja_int((int[]) value);
+		} else if (Double.TYPE.isAssignableFrom(component)) {
+			jArray = ja_double((double[]) value);
+		} else if (Float.TYPE.isAssignableFrom(component)) {
+			jArray = ja_float((float[]) value);
+		} else if (Boolean.TYPE.isAssignableFrom(component)) {
+			jArray = ja_boolean((boolean[]) value);
+		} else if (Short.TYPE.isAssignableFrom(component)) {
+			jArray = ja_short((short[]) value);
+		} else if (Byte.TYPE.isAssignableFrom(component)) {
+			jArray = ja_byte((byte[]) value);
+		} else if (Character.TYPE.isAssignableFrom(component)) {
+			jArray = ja_char((char[]) value);
+		} else {
+			throw new RuntimeException("unhandled primitive array: " + component.getName());
+		}
+		return jArray;
+	}
+
+	JsonArray ja_long(long[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (long t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_int(int[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (int t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_double(double[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (double t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_float(float[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (float t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_boolean(boolean[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (boolean t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_short(short[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (short t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_byte(byte[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (byte t : array) {
+			ja.add(t);
+		}
+		return ja;
+	}
+
+	JsonArray ja_char(char[] array) {
+		JsonArray ja = JsonArray.ja();
+		for (char t : array) {
+			ja.add(String.valueOf(t));
+		}
+		return ja;
+	}
+
+	Object coerceToJson(Object o, CustomConversions cnvs, ConversionService svc) {
+		if (o != null && o.getClass() == Optional.class) {
+			o = ((Optional<?>) o).isEmpty() ? null : ((Optional) o).get();
+		}
+		Optional<Class<?>> clazz;
+		if (o == null) {
+			o = JsonValue.NULL;
+		} else if ((clazz = cnvs.getCustomWriteTarget(o.getClass())).isPresent()) {
+			o = svc.convert(o, clazz.get());
+		} else if (JsonObject.checkType(o)) {
+			// The object is of an acceptable type
+		} else if (Number.class.isAssignableFrom(o.getClass())) {
+			if (o.toString().contains(".")) {
+				o = ((Number) o).doubleValue();
+			} else {
+				o = ((Number) o).longValue();
+			}
+		} else if (Character.class.isAssignableFrom(o.getClass())) {
+			o = ((Character) o).toString();
+		} else if (Enum.class.isAssignableFrom(o.getClass())) {
+			o = ((Enum) o).name();
+		} else { // punt
+			o = o.toString();
+		}
+		return o;
+	}
 }