(airflow) branch main updated: feat(providers_oracle): Add wallet, SSL, and connection class support to OracleHook (#58225)

Mon, 24 Nov 2025 20:30:28 -0800 

This is an automated email from the ASF dual-hosted git repository.

amoghdesai pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/airflow.git


The following commit(s) were added to refs/heads/main by this push:
     new 9b32b566bac feat(providers_oracle): Add wallet, SSL, and connection 
class support to OracleHook (#58225)
9b32b566bac is described below

commit 9b32b566bac1d18283cdf8622a55ffb4d1d23c7b
Author: Vignana Vadloori <[email protected]>
AuthorDate: Tue Nov 25 10:00:10 2025 +0530

    feat(providers_oracle): Add wallet, SSL, and connection class support to 
OracleHook (#58225)
---
 .../src/airflow/providers/oracle/hooks/oracle.py   | 26 ++++++++++++++++++++++
 .../oracle/tests/unit/oracle/hooks/test_oracle.py  | 21 +++++++++++++++++
 2 files changed, 47 insertions(+)

diff --git a/providers/oracle/src/airflow/providers/oracle/hooks/oracle.py 
b/providers/oracle/src/airflow/providers/oracle/hooks/oracle.py
index 1320928fc1b..ba94bdcc02a 100644
--- a/providers/oracle/src/airflow/providers/oracle/hooks/oracle.py
+++ b/providers/oracle/src/airflow/providers/oracle/hooks/oracle.py
@@ -149,6 +149,16 @@ class OracleHook(DbApiHook):
               that you are connecting to (CONNECT_DATA part of TNS)
         :param sid: Oracle System ID that identifies a particular
               database on a system
+        :param wallet_location: Specify the directory where the wallet can be 
found.
+        :param wallet_password: the password to use to decrypt the wallet, if 
it is encrypted.
+            For Oracle Autonomous Database this is the password created when 
downloading the wallet.
+        :param ssl_server_cert_dn: Specify the distinguished name (DN) which 
should be matched
+            with the server. This value is ignored if the 
``ssl_server_dn_match`` parameter is not
+            set to the value True.
+        :param ssl_server_dn_match: Specify whether the server certificate 
distinguished name
+            (DN) should be matched in addition to the regular certificate 
verification that is performed.
+        :param cclass:  the connection class to use for Database Resident 
Connection Pooling (DRCP).
+        :param pool_name: the name of the DRCP pool when using multi-pool DRCP 
with Oracle Database 23.4, or higher.
 
         You can set these parameters in the extra fields of your connection
         as in
@@ -221,6 +231,8 @@ class OracleHook(DbApiHook):
         if "events" in conn.extra_dejson:
             conn_config["events"] = conn.extra_dejson.get("events")
 
+        # TODO: Replace mapping with oracledb.AuthMode enum once 
python-oracledb>=2.3
+        # mode = getattr(oracledb.AuthMode, conn.extra_dejson.get("mode", 
"").upper(), None)
         mode = conn.extra_dejson.get("mode", "").lower()
         if mode == "sysdba":
             conn_config["mode"] = oracledb.AUTH_MODE_SYSDBA
@@ -237,6 +249,8 @@ class OracleHook(DbApiHook):
         elif mode == "sysrac":
             conn_config["mode"] = oracledb.AUTH_MODE_SYSRAC
 
+        # TODO: Replace mapping with oracledb.Purity enum once 
python-oracledb>=2.3
+        # purity = getattr(oracledb.Purity, conn.extra_dejson.get("purity", 
"").upper(), None)
         purity = conn.extra_dejson.get("purity", "").lower()
         if purity == "new":
             conn_config["purity"] = oracledb.PURITY_NEW
@@ -249,6 +263,18 @@ class OracleHook(DbApiHook):
         if expire_time:
             conn_config["expire_time"] = expire_time
 
+        for name in [
+            "wallet_location",
+            "wallet_password",
+            "ssl_server_cert_dn",
+            "ssl_server_dn_match",
+            "cclass",
+            "pool_name",
+        ]:
+            value = conn.extra_dejson.get(name)
+            if value is not None:
+                conn_config[name] = value
+
         oracle_conn = oracledb.connect(**conn_config)
         if mod is not None:
             oracle_conn.module = mod
diff --git a/providers/oracle/tests/unit/oracle/hooks/test_oracle.py 
b/providers/oracle/tests/unit/oracle/hooks/test_oracle.py
index fd7c2d77f09..97126d827de 100644
--- a/providers/oracle/tests/unit/oracle/hooks/test_oracle.py
+++ b/providers/oracle/tests/unit/oracle/hooks/test_oracle.py
@@ -309,6 +309,27 @@ class TestOracleHookConn:
         uri = self.db_hook.get_uri()
         assert uri == expected_uri
 
+    @mock.patch("airflow.providers.oracle.hooks.oracle.oracledb.connect")
+    def test_get_conn_with_various_params(self, mock_connect):
+        """Verify wallet/SSL, connection class, and pool parameters
+        are passed to oracledb.connect."""
+        params = {
+            "wallet_location": "/tmp/wallet",
+            "wallet_password": "secret",
+            "ssl_server_cert_dn": "CN=dbserver,OU=DB,O=Oracle,L=BLR,C=IN",
+            "ssl_server_dn_match": True,
+            "cclass": "MY_APP_CLASS",
+            "pool_name": "POOL_1",
+        }
+        self.connection.extra = json.dumps(params)
+        self.db_hook.get_conn()
+
+        assert mock_connect.call_count == 1
+        _, kwargs = mock_connect.call_args
+
+        for key, value in params.items():
+            assert kwargs[key] == value
+
 
 class TestOracleHook:
     def setup_method(self):

Reply via email to