[QUESTION]How to use Chinese Key Vault #1126
Comments
sunmsy
added
the
Question
|
hi @sunmsy Please take a look at the documentation on Using Always Encrypted with the JDBC driver You can also find an Azure Key Vault Sample here If you are still having issues, please share your code with us so we can investigate further. |
lilgreenbird
added
the
Bug
|
The Azure key vault domain name is assumed to always end with "vault.azure.net" which is wrong for Azure China or other areas. Thanks for the report we will look into fixing this. |
|
@lilgreenbird Thank you very much for your reply. If this bug is fixed, please let me know. |
|
We haven't set a timeout for the next release set, but typically this will likely be within the next couple of months. This issue will remain open until we publish the fix, if you subscribe to notifications you will be notified when the fix is merged. In the meantime, if you require a workaround sooner, you can clone the repo and customize this by removing the following lines from SQLServerColumnEncryptionAzureKeyVaultProvider.java: |
|
Hi @sunmsy , |
|
Fixed in #1130 |
|
Thanks, It works! |
When I use the Chinese key vault, I get the following error
Exception in thread "main" com.microsoft.sqlserver.jdbc.SQLServerException: Invalid Azure Key Vault key path specified: https://sunmsy.vault.azure.cn/keys/test/d03f8000d80645cb9d26756e290d2076.
at com.microsoft.sqlserver.jdbc.SQLServerColumnEncryptionAzureKeyVaultProvider.ValidateNonEmptyAKVPath(SQLServerColumnEncryptionAzureKeyVaultProvider.java:456)
at com.microsoft.sqlserver.jdbc.SQLServerColumnEncryptionAzureKeyVaultProvider.encryptColumnEncryptionKey(SQLServerColumnEncryptionAzureKeyVaultProvider.java:287)
at com.sqlkeyvalut.demo.DemoApplication.createCEK(DemoApplication.java:148)
at com.sqlkeyvalut.demo.DemoApplication.testAKV(DemoApplication.java:99)
at com.sqlkeyvalut.demo.DemoApplication.main(DemoApplication.java:83)
The text was updated successfully, but these errors were encountered: