sofien-hamdi
diff --git a/‎cloud-sql/mysql/servlet/README.md‎
Lines changed: 1 addition & 1 deletion b/‎cloud-sql/mysql/servlet/README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cloud-sql/mysql/servlet/pom.xml‎
Lines changed: 1 addition & 0 deletions b/‎cloud-sql/mysql/servlet/pom.xml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎cloud-sql/postgres/servlet/README.md‎
Lines changed: 1 addition & 1 deletion b/‎cloud-sql/postgres/servlet/README.md‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cloud-sql/sqlserver/servlet/.env.yaml‎
Lines changed: 6 additions & 0 deletions b/‎cloud-sql/sqlserver/servlet/.env.yaml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎cloud-sql/sqlserver/servlet/README.md‎
Lines changed: 46 additions & 1 deletion b/‎cloud-sql/sqlserver/servlet/README.md‎
Lines changed: 46 additions & 1 deletion
diff --git a/‎cloud-sql/sqlserver/servlet/pom.xml‎
Lines changed: 13 additions & 1 deletion b/‎cloud-sql/sqlserver/servlet/pom.xml‎
Lines changed: 13 additions & 1 deletion
diff --git a/‎cloud-sql/sqlserver/servlet/src/main/java/com/example/cloudsql/ConnectionPoolContextListener.java‎
Lines changed: 7 additions & 93 deletions b/‎cloud-sql/sqlserver/servlet/src/main/java/com/example/cloudsql/ConnectionPoolContextListener.java‎
Lines changed: 7 additions & 93 deletions
diff --git a/‎cloud-sql/sqlserver/servlet/src/main/java/com/example/cloudsql/ConnectionPoolFactory.java‎
Lines changed: 57 additions & 0 deletions b/‎cloud-sql/sqlserver/servlet/src/main/java/com/example/cloudsql/ConnectionPoolFactory.java‎
Lines changed: 57 additions & 0 deletions
diff --git a/‎cloud-sql/sqlserver/servlet/src/main/java/com/example/cloudsql/ConnectorConnectionPoolFactory.java‎
Lines changed: 74 additions & 0 deletions b/‎cloud-sql/sqlserver/servlet/src/main/java/com/example/cloudsql/ConnectorConnectionPoolFactory.java‎
Lines changed: 74 additions & 0 deletions
@@ -181,7 +181,7 @@ mvn clean package com.google.cloud.tools:jib-maven-plugin:2.8.0:build \
 
 To deploy the application to Cloud Functions, first fill in the values for required environment variables in `.env.yaml`. Then run the following command
 ```
-gcloud functions deploy mysql-sample \
+gcloud functions deploy sql-sample \
   --trigger-http \
   --entry-point com.example.cloudsql.functions.Main \
   --runtime java11 \
 
@@ -92,6 +92,7 @@
       <version>1.1.3</version>
       <scope>test</scope>
     </dependency>
+    <!-- Only required for Cloud Functions Deployments -->
     <dependency>
       <groupId>com.google.cloud.functions.invoker</groupId>
       <artifactId>java-function-invoker</artifactId>
 
@@ -171,7 +171,7 @@ mvn clean package com.google.cloud.tools:jib-maven-plugin:2.8.0:build \
 
 To deploy the application to Cloud Functions, first fill in the values for required environment variables in `.env.yaml`. Then run the following command
 ```
-gcloud functions deploy mysql-sample \
+gcloud functions deploy sql-sample \
   --trigger-http \
   --entry-point com.example.cloudsql.functions.Main \
   --runtime java11 \
 
@@ -0,0 +1,6 @@
+INSTANCE_CONNECTION_NAME: <PROJECT-ID>:<INSTANCE-REGION>:INSTANCE-NAME>
+INSTANCE_HOST: '127.0.0.1'
+DB_PORT: 1433
+DB_USER: <YOUR_DB_USER_NAME>
+DB_PASS: <YOUR_DB_PASSWORD>
+DB_NAME: <YOUR_DB_NAME>
@@ -31,6 +31,34 @@ export DB_NAME='my_db'
 Note: Saving credentials in environment variables is convenient, but not secure - consider a more
 secure solution such as [Cloud KMS](https://cloud.google.com/kms/) or [Secret Manager](https://cloud.google.com/secret-manager/) to help keep secrets safe.
 
+## Configure SSL Certificates
+For deployments that connect directly to a Cloud SQL instance with TCP,
+without using the Cloud SQL Proxy,
+configuring SSL certificates will ensure the connection is encrypted. 
+1. Use the gcloud CLI to [download the server certificate](https://cloud.google.com/sql/docs/mysql/configure-ssl-instance#server-certs) for your Cloud SQL instance.
+    - Get information about the service certificate:
+        ```
+        gcloud beta sql ssl server-ca-certs list --instance=INSTANCE_NAME
+        ```
+    - Create a server certificate:
+        ```
+        gcloud beta sql ssl server-ca-certs create --instance=INSTANCE_NAME
+        ```
+    - Download the certificate information to a local PEM file
+        ```
+        gcloud beta sql ssl server-ca-certs list \
+          --format="value(cert)" \
+          --instance=INSTANCE_NAME > \
+          server-ca.pem
+        ```
+
+1. [Import the server certificate into a custom Java truststore](https://dev.mysql.com/doc/connector-j/8.0/en/connector-j-reference-using-ssl.html) using `keytool`:
+      ```
+      keytool -importcert -alias MySQLCACert -file server-ca.pem \
+    -keystore <truststore-filename> -storepass <password>
+      ```  
+1. Set the `TRUST_CERT_KEYSTORE_PATH` and `TRUST_CERT_KEYSTORE_PASSWD` environment variables to the values used in the previous step.
+
 ## Deploying locally
 
 To run this application locally, run the following command inside the project folder:
@@ -50,7 +78,7 @@ and verify that
  has been added in your build section as a plugin.
 
 
-### Development Server
+### App Engine Development Server
 
 The following command will run the application locally in the the GAE-development server:
 ```bash
@@ -59,6 +87,12 @@ mvn clean package appengine:run
 
 Note: if the GAE development server fails to start, check that you are using a supported version of Java. Supported versions are Java 8 and Java 11.
 
+### Cloud Functions Development Server
+To run the application locally as a Cloud Function, run the following command:
+```
+mvn function:run -Drun.functionTarget=com.example.cloudsql.functions.Main
+```
+
 ### Deploy to Google Cloud
 
 First, update `src/main/webapp/WEB-INF/appengine-web.xml` with the correct values to pass the 
@@ -125,5 +159,16 @@ mvn clean package com.google.cloud.tools:jib-maven-plugin:2.8.0:build \
   For more details about using Cloud Run see http://cloud.run.
   Review other [Java on Cloud Run samples](../../../run/).
 
+### Deploy to Google Cloud Functions
+
+To deploy the application to Cloud Functions, first fill in the values for required environment variables in `.env.yaml`. Then run the following command
+```
+gcloud functions deploy sql-sample \
+  --trigger-http \
+  --entry-point com.example.cloudsql.functions.Main \
+  --runtime java11 \
+  --env-vars-file .env.yaml
+```
+
 ### Cleanup
 To avoid incurring any charges, navigate to your project's [App Engine settings](https://console.cloud.google.com/appengine/settings) and click `Disable Application`. Also [delete your Cloud SQL Instance](https://cloud.google.com/sql/docs/mysql/delete-instance) if you no longer need it.
@@ -52,7 +52,7 @@
     <dependency>
       <groupId>com.microsoft.sqlserver</groupId>
       <artifactId>mssql-jdbc</artifactId>
-      <version>9.4.1.jre8</version>
+      <version>10.2.0.jre8</version>
     </dependency>
     <dependency>
       <groupId>com.google.cloud.sql</groupId>
@@ -82,6 +82,18 @@
       <version>1.1.3</version>
       <scope>test</scope>
     </dependency>
+    <!-- Only required for Cloud Functions Deployments -->
+    <dependency>
+      <groupId>com.google.cloud.functions.invoker</groupId>
+      <artifactId>java-function-invoker</artifactId>
+      <version>1.0.1</version>
+    </dependency>
+    <dependency>
+      <groupId>com.google.cloud.functions</groupId>
+      <artifactId>functions-framework-api</artifactId>
+      <version>1.0.4</version>
+      <scope>provided</scope>
+    </dependency>
   </dependencies>
 
   <build>
 
@@ -16,10 +16,7 @@
 
 package com.example.cloudsql;
 
-import com.zaxxer.hikari.HikariConfig;
 import com.zaxxer.hikari.HikariDataSource;
-import java.sql.Connection;
-import java.sql.PreparedStatement;
 import java.sql.SQLException;
 import java.util.logging.Logger;
 import javax.servlet.ServletContextEvent;
@@ -40,94 +37,6 @@ public class ConnectionPoolContextListener implements ServletContextListener {
   private static final String DB_PASS = System.getenv("DB_PASS");
   private static final String DB_NAME = System.getenv("DB_NAME");
 
-  private DataSource createConnectionPool() {
-    // [START cloud_sql_sqlserver_servlet_create]
-    // Note: For Java users, the Cloud SQL JDBC Socket Factory can provide authenticated connections
-    // which is preferred to using the Cloud SQL Proxy with Unix sockets.
-    // See https://github.com/GoogleCloudPlatform/cloud-sql-jdbc-socket-factory for details.
-
-    // The configuration object specifies behaviors for the connection pool.
-    HikariConfig config = new HikariConfig();
-
-    // The following is equivalent to setting the config options below:
-    // jdbc:sqlserver://;user=<DB_USER>;password=<DB_PASS>;databaseName=<DB_NAME>;
-    // socketFactoryClass=com.google.cloud.sql.sqlserver.SocketFactory;
-    // socketFactoryConstructorArg=<INSTANCE_CONNECTION_NAME>
-    
-    // See the link below for more info on building a JDBC URL for the Cloud SQL JDBC Socket Factory
-    // https://github.com/GoogleCloudPlatform/cloud-sql-jdbc-socket-factory#creating-the-jdbc-url
-
-    // Configure which instance and what database user to connect with.
-    config
-        .setDataSourceClassName("com.microsoft.sqlserver.jdbc.SQLServerDataSource");
-    config.setUsername(DB_USER); // e.g. "root", "sqlserver"
-    config.setPassword(DB_PASS); // e.g. "my-password"
-    config.addDataSourceProperty("databaseName", DB_NAME);
-
-    config.addDataSourceProperty("socketFactoryClass",
-        "com.google.cloud.sql.sqlserver.SocketFactory");
-    config.addDataSourceProperty("socketFactoryConstructorArg", INSTANCE_CONNECTION_NAME);
-
-    // ... Specify additional connection properties here.
-
-    // [START_EXCLUDE]
-
-    // [START cloud_sql_sqlserver_servlet_limit]
-    // maximumPoolSize limits the total number of concurrent connections this pool will keep. Ideal
-    // values for this setting are highly variable on app design, infrastructure, and database.
-    config.setMaximumPoolSize(5);
-    // minimumIdle is the minimum number of idle connections Hikari maintains in the pool.
-    // Additional connections will be established to meet this value unless the pool is full.
-    config.setMinimumIdle(5);
-    // [END cloud_sql_sqlserver_servlet_limit]
-
-    // [START cloud_sql_sqlserver_servlet_timeout]
-    // setConnectionTimeout is the maximum number of milliseconds to wait for a connection checkout.
-    // Any attempt to retrieve a connection from this pool that exceeds the set limit will throw an
-    // SQLException.
-    config.setConnectionTimeout(10000); // 10 seconds
-    // idleTimeout is the maximum amount of time a connection can sit in the pool. Connections that
-    // sit idle for this many milliseconds are retried if minimumIdle is exceeded.
-    config.setIdleTimeout(600000); // 10 minutes
-    // [END cloud_sql_sqlserver_servlet_timeout]
-
-    // [START cloud_sql_sqlserver_servlet_backoff]
-    // Hikari automatically delays between failed connection attempts, eventually reaching a
-    // maximum delay of `connectionTimeout / 2` between attempts.
-    // [END cloud_sql_sqlserver_servlet_backoff]
-
-    // [START cloud_sql_sqlserver_servlet_lifetime]
-    // maxLifetime is the maximum possible lifetime of a connection in the pool. Connections that
-    // live longer than this many milliseconds will be closed and reestablished between uses. This
-    // value should be several minutes shorter than the database's timeout value to avoid unexpected
-    // terminations.
-    config.setMaxLifetime(1800000); // 30 minutes
-    // [END cloud_sql_sqlserver_servlet_lifetime]
-
-    // [END_EXCLUDE]
-
-    // Initialize the connection pool using the configuration object.
-    DataSource pool = new HikariDataSource(config);
-    // [END cloud_sql_sqlserver_servlet_create]
-    return pool;
-  }
-
-  private void createTable(DataSource pool) throws SQLException {
-    // Safely attempt to create the table schema.
-    try (Connection conn = pool.getConnection()) {
-      PreparedStatement createTableStatement = conn.prepareStatement(
-          "IF NOT EXISTS ("
-              + "SELECT * FROM sysobjects WHERE name='votes' and xtype='U')"
-              + "CREATE TABLE votes ("
-              + "vote_id INT NOT NULL IDENTITY,"
-              + "time_cast DATETIME NOT NULL,"
-              + "candidate VARCHAR(6) NOT NULL,"
-              + "PRIMARY KEY (vote_id));"
-      );
-      createTableStatement.execute();
-    }
-  }
-
   @Override
   public void contextDestroyed(ServletContextEvent event) {
     // This function is called when the Servlet is destroyed.
@@ -143,11 +52,16 @@ public void contextInitialized(ServletContextEvent event) {
     // that can be used to connect to.
     DataSource pool = (DataSource) event.getServletContext().getAttribute("my-pool");
     if (pool == null) {
-      pool = createConnectionPool();
+      if (System.getenv("INSTANCE_HOST") != null) {
+        pool = TcpConnectionPoolFactory.createConnectionPool();
+      } else {
+        pool = ConnectorConnectionPoolFactory.createConnectionPool();
+      }
       event.getServletContext().setAttribute("my-pool", pool);
     }
     try {
-      createTable(pool);
+      // from src/main/java/com/example/cloudsql/Utils.java
+      Utils.createTable(pool);
     } catch (SQLException ex) {
       throw new RuntimeException("Unable to verify table schema. Please double check the steps"
           + "in the README and try again.", ex);
 
@@ -0,0 +1,57 @@
+/*
+ * Copyright 2022 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.example.cloudsql;
+
+import com.zaxxer.hikari.HikariConfig;
+
+public class ConnectionPoolFactory {
+
+  public static HikariConfig configureConnectionPool(HikariConfig config) {
+    // [START cloud_sql_sqlserver_servlet_limit]
+    // maximumPoolSize limits the total number of concurrent connections this pool will keep. Ideal
+    // values for this setting are highly variable on app design, infrastructure, and database.
+    config.setMaximumPoolSize(5);
+    // minimumIdle is the minimum number of idle connections Hikari maintains in the pool.
+    // Additional connections will be established to meet this value unless the pool is full.
+    config.setMinimumIdle(5);
+    // [END cloud_sql_sqlserver_servlet_limit]
+
+    // [START cloud_sql_sqlserver_servlet_timeout]
+    // setConnectionTimeout is the maximum number of milliseconds to wait for a connection checkout.
+    // Any attempt to retrieve a connection from this pool that exceeds the set limit will throw an
+    // SQLException.
+    config.setConnectionTimeout(10000); // 10 seconds
+    // idleTimeout is the maximum amount of time a connection can sit in the pool. Connections that
+    // sit idle for this many milliseconds are retried if minimumIdle is exceeded.
+    config.setIdleTimeout(600000); // 10 minutes
+    // [END cloud_sql_sqlserver_servlet_timeout]
+
+    // [START cloud_sql_sqlserver_servlet_backoff]
+    // Hikari automatically delays between failed connection attempts, eventually reaching a
+    // maximum delay of `connectionTimeout / 2` between attempts.
+    // [END cloud_sql_sqlserver_servlet_backoff]
+
+    // [START cloud_sql_sqlserver_servlet_lifetime]
+    // maxLifetime is the maximum possible lifetime of a connection in the pool. Connections that
+    // live longer than this many milliseconds will be closed and reestablished between uses. This
+    // value should be several minutes shorter than the database's timeout value to avoid unexpected
+    // terminations.
+    config.setMaxLifetime(1800000); // 30 minutes
+    // [END cloud_sql_sqlserver_servlet_lifetime]
+    return config;
+  }
+}
@@ -0,0 +1,74 @@
+/*
+ * Copyright 2022 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.example.cloudsql;
+
+// [START cloud_sql_sqlserver_servlet_connect_connector]
+
+import com.zaxxer.hikari.HikariConfig;
+import com.zaxxer.hikari.HikariDataSource;
+import javax.sql.DataSource;
+
+public class ConnectorConnectionPoolFactory extends ConnectionPoolFactory {
+
+  // Note: Saving credentials in environment variables is convenient, but not
+  // secure - consider a more secure solution such as
+  // Cloud Secret Manager (https://cloud.google.com/secret-manager) to help
+  // keep secrets safe.
+  private static final String INSTANCE_CONNECTION_NAME =
+      System.getenv("INSTANCE_CONNECTION_NAME");
+  private static final String DB_USER = System.getenv("DB_USER");
+  private static final String DB_PASS = System.getenv("DB_PASS");
+  private static final String DB_NAME = System.getenv("DB_NAME");
+
+  public static DataSource createConnectionPool() {
+    // The configuration object specifies behaviors for the connection pool.
+    HikariConfig config = new HikariConfig();
+
+    // The following is equivalent to setting the config options below:
+    // jdbc:sqlserver://;user=<DB_USER>;password=<DB_PASS>;databaseName=<DB_NAME>;
+    // socketFactoryClass=com.google.cloud.sql.sqlserver.SocketFactory;
+    // socketFactoryConstructorArg=<INSTANCE_CONNECTION_NAME>
+
+    // See the link below for more info on building a JDBC URL for the Cloud SQL JDBC Socket Factory
+    // https://github.com/GoogleCloudPlatform/cloud-sql-jdbc-socket-factory#creating-the-jdbc-url
+
+    // Configure which instance and what database user to connect with.
+    config
+        .setDataSourceClassName("com.microsoft.sqlserver.jdbc.SQLServerDataSource");
+    config.setUsername(DB_USER); // e.g. "root", "sqlserver"
+    config.setPassword(DB_PASS); // e.g. "my-password"
+    config.addDataSourceProperty("databaseName", DB_NAME);
+
+    config.addDataSourceProperty("socketFactoryClass",
+        "com.google.cloud.sql.sqlserver.SocketFactory");
+    config.addDataSourceProperty("socketFactoryConstructorArg", INSTANCE_CONNECTION_NAME);
+
+    // The Java Connector provides SSL encryption, so it should be disabled
+    // at the driver level.
+    config.addDataSourceProperty("encrypt", "false");
+
+    // ... Specify additional connection properties here.
+    // [START_EXCLUDE]
+    configureConnectionPool(config);
+    // [END_EXCLUDE]
+
+    // Initialize the connection pool using the configuration object.
+    return new HikariDataSource(config);
+  }
+}
+// [END cloud_sql_sqlserver_servlet_connect_connector]
+