## MONGODB

#### Operations:
1. Create DB
2. Setup User Access Levels
3. Add/ update entries
4. fetch entries

References: 
1. https://www.youtube.com/watch?v=H4Z5ya3ymYM
2. https://www.mongodb.com/docs/

In [1]:
!pip install pymongo[srv]

Collecting pymongo[srv]
^C


In [2]:
import os
import urllib.parse
from bson.codec_options import CodecOptions
from bson.binary import STANDARD

import pymongo
from pymongo.encryption import ClientEncryption
from pymongo.encryption_options import AutoEncryptionOpts
from pymongo.mongo_client import MongoClient
from pymongo.server_api import ServerApi

ModuleNotFoundError: No module named 'bson'

In [None]:
db_username = "DB_username"    # admin username or doctor username
db_password = "DB_password"    # admin_pass or doctor_pass

uri = f"mongodb+srv://{db_username}:{db_password}@cluster0.ytgxw.mongodb.net/?retryWrites=true&w=majority&appName=Cluster0"

# Create a new client and connect to the server
client = MongoClient(uri, server_api=ServerApi('1'))

# Send a ping to confirm a successful connection
try:
    client.admin.command('ping')
    print("Pinged your deployment. You successfully connected to MongoDB!")
except Exception as e:
    print(e)

Pinged your deployment. You successfully connected to MongoDB!


In [7]:
db = client['healthcare']
col = db['c_01']
col

Collection(Database(MongoClient(host=['cluster0-shard-00-00.ytgxw.mongodb.net:27017', 'cluster0-shard-00-02.ytgxw.mongodb.net:27017', 'cluster0-shard-00-01.ytgxw.mongodb.net:27017'], document_class=dict, tz_aware=False, connect=True, retrywrites=True, w='majority', appname='Cluster0', authsource='admin', replicaset='atlas-g5u5tx-shard-0', tls=True, server_api=<pymongo.server_api.ServerApi object at 0x7771a8457380>), 'healthcare'), 'c_01')

#### CRUD Operations

In [None]:
# insert single entry
# each entry will be assigned unique id
single_entry = {
    "DemographicData": {
        "Name": "James Atkinson",
        "Age": 65,
        "Gender": "Male",
        "Contact": "8460846260"
    },
    "SymptomsData": [
        {
            "Symptom": "Chest pain",
            "Frequency": "Rarely",
            "Severity": "Highly Severe",
            "Duration": "2 hours",
            "Additional Notes": "N.A."
        }
    ]
}

col.insert_one(single_entry)
print("done")

done


Note: 
1. Can be done manually through mongodb interface also 
2. For multiples entries, use collection.insert_many()
3. Check mongodb CRUD docs for the same: https://www.mongodb.com/docs/manual/crud/

In [None]:
# fetch user using patient name
query = {"DemographicData.Name": "James Atkinson"}
col.find_one(query)

{'_id': ObjectId('67c8814d74b9fe0023cba11a'),
 'DemographicData': {'Name': 'James Atkinson',
  'Age': 65,
  'Gender': 'Male',
  'Contact': '8460846260'},
 'SymptomsData': [{'Symptom': 'Chest pain',
   'Frequency': 'Rarely',
   'Severity': 'Highly Severe',
   'Duration': '2 hours',
   'Additional Notes': 'N.A.'}]}

In [None]:
# fetch user using contact number
query = {"DemographicData.Contact": "+6975123532"}
col.find_one(query)

{'_id': ObjectId('67b4856125f9c6ee7048e239'),
 'DemographicData': {'Name': 'John Johnson',
  'Age': 42,
  'Gender': 'Male',
  'Contact': '+6975123532'},
 'SymptomsData': [{'Symptom': 'Cough',
   'Frequency': 'Weekly',
   'Severity': 'Severe',
   'Duration': '1 week',
   'Additional Notes': 'Worse in the morning'},
  {'Symptom': 'Muscle pain',
   'Frequency': 'Daily',
   'Severity': 'Moderate',
   'Duration': '1 week',
   'Additional Notes': 'Worse in the morning'}]}

In [None]:
# delete user using patient name
query = {"DemographicData.Name": "James Atkinson"}
col.delete_one(query)
print("done")

done


In [None]:
# delete user using contact number
query = {"DemographicData.Contact": "+6975123532"}
col.delete_one(query)
print("done")

done


#### Queryable Encryption: 
1. https://www.mongodb.com/docs/manual/core/queryable-encryption/quick-start/#std-label-qe-quick-start
2. https://www.youtube.com/watch?v=IRErM4UOj1M
3. https://github.com/mongodb/docs/blob/master/source/includes/qe-tutorials/python/queryable_encryption_tutorial.py 

##### 1. Assign Application Variables

    * kms_provider_name - The KMS you're using to store your Customer Master Key. Set this variable to "local" for this tutorial.

    * uri - Your MongoDB deployment connection URI. Set your connection URI in the MONGODB_URI environment variable or replace the value directly.

    * key_vault_database_name - The database in MongoDB where your data encryption keys (DEKs) will be stored. Set this variable to "encryption".

    * key_vault_collection_name - The collection in MongoDB where your DEKs will be stored. Set this variable to "__keyVault", which is the convention to help prevent mistaking it for a user collection.

    * key_vault_namespace - The namespace in MongoDB where your DEKs will be stored. Set this variable to the values of the key_vault_database_name and key_vault_collection_name variables, separated by a period.

    * encrypted_database_name - The database in MongoDB where your encrypted data will be stored. Set this variable to "medicalRecords".

    * encrypted_collection_name - The collection in MongoDB where your encrypted data will be stored. Set this variable to "patients".

In [None]:
# KMS provider name should be one of the following: "aws", "gcp", "azure", "kmip" or "local"
kms_provider_name = "local"    # "<KMS provider name>

db_username = "Admin_Username"
db_password = "Admin_Pass"
uri = f"mongodb+srv://{db_username}:{db_password}@cluster0.ytgxw.mongodb.net/?retryWrites=true&w=majority&appName=Cluster0"  # Your connection URI

key_vault_database_name = "encryption"
key_vault_collection_name = "__keyVault"
key_vault_namespace = f"{key_vault_database_name}.{key_vault_collection_name}"
encrypted_database_name = "encryped_healthcare"
encrypted_collection_name = "c_01"

##### 2. Create Encrypted Collection

In [18]:
# create customer master key (CMK)

path = "customer-master-key.txt"
file_bytes = os.urandom(96)
with open(path, "wb") as f:
    f.write(file_bytes)

In [19]:
# retrieve CMK and specify provider settings

path = "./customer-master-key.txt"
with open(path, "rb") as f:
    local_master_key = f.read()
    if len(local_master_key) != 96:
        raise Exception("Expected the customer master key file to be 96 bytes.")
    kms_provider_credentials = {
        "local": {
            "key": local_master_key
        },
    }

In [23]:
# set automatic encryption options
# install automatic encryption shared lib: https://www.mongodb.com/try/download/enterprise 

auto_encryption_options = AutoEncryptionOpts(
    kms_provider_credentials,
    key_vault_namespace,
    # crypt_shared_lib_path="/home/sgsharma/anaconda3/envs/logic/lib/python3.12/site-packages/pymongocrypt/libmongocrypt.so" # Path to your Automatic Encryption Shared Library>
)

In [24]:
# create new client to setup encrypted collection
encrypted_client = MongoClient(
    uri, auto_encryption_opts=auto_encryption_options)

In [25]:
# Specify Fields to Encrypt

encrypted_fields_map = {
  "fields": [
    {
      "path": "DemographicData.Contact",
      "bsonType": "string",
      "queries": { "queryType": "equality" }
    }
  ]
}

In [28]:
# create the collection
client_encryption = ClientEncryption(
    kms_providers=kms_provider_credentials,
    key_vault_namespace=key_vault_namespace,
    key_vault_client=encrypted_client,
    codec_options=CodecOptions(uuid_representation=STANDARD)
)

In [30]:
customer_master_key_credentials = {}    # no need as using local

# create encrypted collection
client_encryption.create_encrypted_collection(
    encrypted_client[encrypted_database_name],
    encrypted_collection_name,
    encrypted_fields_map,
    kms_provider_name,
    customer_master_key_credentials,
)

(Collection(Database(MongoClient(host=['cluster0-shard-00-02.ytgxw.mongodb.net:27017', 'cluster0-shard-00-01.ytgxw.mongodb.net:27017', 'cluster0-shard-00-00.ytgxw.mongodb.net:27017'], document_class=dict, tz_aware=False, connect=True, retrywrites=True, w='majority', appname='Cluster0', authsource='admin', replicaset='atlas-g5u5tx-shard-0', tls=True, auto_encryption_opts=<pymongo.encryption_options.AutoEncryptionOpts object at 0x7771a0172810>), 'encryped_healthcare'), 'c_01'),
 {'fields': [{'path': 'DemographicData.Contact',
    'bsonType': 'string',
    'queries': {'queryType': 'equality'},
    'keyId': Binary(b'9\xadM\xf0{\x88KY\x89\x885\xf7O\x85\x98(', 4)}]})

In [31]:
patient_document = {
    "DemographicData": {
        "Name": "James Atkinson",
        "Age": 65,
        "Gender": "Male",
        "Contact": "8460846260"
    },
    "SymptomsData": [
        {
            "Symptom": "Chest pain",
            "Frequency": "Rarely",
            "Severity": "Highly Severe",
            "Duration": "2 hours",
            "Additional Notes": "N.A."
        }
    ]
}

encrypted_collection = encrypted_client[encrypted_database_name][encrypted_collection_name]
result = encrypted_collection.insert_one(patient_document)
print(result)

InsertOneResult(ObjectId('67c89ac774b9fe0023cba121'), acknowledged=True)


In [35]:
# access using 'admin' 
find_result = encrypted_collection.find_one({
    "DemographicData.Name": "James Atkinson"
})

find_result

{'_id': ObjectId('67c89ac774b9fe0023cba121'),
 'DemographicData': {'Name': 'James Atkinson',
  'Age': 65,
  'Gender': 'Male',
  'Contact': '8460846260'},
 'SymptomsData': [{'Symptom': 'Chest pain',
   'Frequency': 'Rarely',
   'Severity': 'Highly Severe',
   'Duration': '2 hours',
   'Additional Notes': 'N.A.'}],
 '__safeContent__': [b'\xc6\x87\x13\xb5\xec\n\xe7\x90\x04\x89\xf1\x9f\xc8\xd5\x86\x95jf\xe59W\xcf\x06\x91\xeb\x99<\xfe\x1f\xa8\xc1\xfe']}

In [37]:
# access using 'doctor'
db_username = "doctor"
db_password = "doctor@123"
encoded_password = urllib.parse.quote(db_password)    # for escaping any conflicting characters in password
uri = f"mongodb+srv://{db_username}:{encoded_password}@cluster0.ytgxw.mongodb.net/?retryWrites=true&w=majority&appName=Cluster0"  # Your connection URI

client = MongoClient(uri, server_api=ServerApi('1'))
encrypted_collection = client[encrypted_database_name][encrypted_collection_name]
find_result = encrypted_collection.find_one({
    "DemographicData.Name": "James Atkinson"
})

find_result

{'_id': ObjectId('67c89ac774b9fe0023cba121'),
 'DemographicData': {'Name': 'James Atkinson',
  'Age': 65,
  'Gender': 'Male',
  'Contact': Binary(b'\x0e9\xadM\xf0{\x88KY\x89\x885\xf7O\x85\x98(\x02A5)[9\x8cD\xaf\xa0\x12\xe2J\x00\x02W$q\x8d\x88\x84\xb8Z\x1bT|\x8ay!\x07\x83N\xc2?\xcc]\xc5\x04"\xdd\xae\xf1|\xb3I\rr\n\xf9\xad\x87g;y\xdcRL\xa9>\x83>\x8b\xde9t\xdc1\x98\x02\x0bM@\xf3y\x17 >\x02\xa6\x1b*d(\xa5\xec\x08 \x0f\xa9\x15\xbae\xc8\x00j!\x1de)-\xfa\xb5l\'\xf0,\xbb\x07#K\xe0\x92\xdb[t\xdb4\x00\x9f8\x7f\xb3\x8d\x8cT\xec(\xd8\xb8\xc6\x87\x13\xb5\xec\n\xe7\x90\x04\x89\xf1\x9f\xc8\xd5\x86\x95jf\xe59W\xcf\x06\x91\xeb\x99<\xfe\x1f\xa8\xc1\xfe\xb1\xc2B\x91P\xa5\x8d\x7f\x07Q\xe9\xfag\xcd\xe8EP\xdbc\x12\x8fU9\xee\xbc\xb2\xccz\x81:6\x14', 6)},
 'SymptomsData': [{'Symptom': 'Chest pain',
   'Frequency': 'Rarely',
   'Severity': 'Highly Severe',
   'Duration': '2 hours',
   'Additional Notes': 'N.A.'}],
 '__safeContent__': [b'\xc6\x87\x13\xb5\xec\n\xe7\x90\x04\x89\xf1\x9f\xc8\xd5\x86\x95jf\xe59W\xcf