A simple configuration interface with plaintext and encrypted file support.
Project description
figtion
.---.
.-. |~~~|
|~| |~~~|--.
.---!-| .--| C |--|
|===|*|--|%%| f | |
| |*|__| | g | |
|===|*|==| | | |
| |_|__| |~~~|__|
|===|~|--|%%|~~~|--|
`---^-^--^--^---`--' hjw
A simple configuration interface with plaintext and encrypted file support.
Benefits
- seemless Python
dictinterface- unified config definition and defaults
- YAML text file source for file-system input & serialization
- nested entries supported
- optional live reloading
- simple precedence
defaultskeys define config keys- YAML values override
defaultsvalues
- secrets support
- secrets saved to private YAML file
- secrets encrypted at rest via environment variable
- update & mask from public YAML file
Examples
Config Definition and Defaults
import figtion
defaults = {'my server' : 'www.bestsite.web'
,'number of nodes' : 5
,'password' : 'huduyutakeme4'
,'nested stuff' : {'breakfast' : 'coffee'}
,'listed stuff' : ['a','b','c']}
cfg = figtion.Config(defaults=defaults,filepath='./conf.yml')
print(cfg['my server'])
This will print either 'www.bestsite.web' or the value of 'my server' in ./conf.yml if it is something else.
defaults strictly defines the schema. Only keys present in defaults from a serial file will be retained. If you want to risk unspecified input keys and load everything from the YAML file, you can either omit the defaults parameter or set promiscuous=True when constructing Config.
Self-Documenting Plaintext
Specify if/when you want to update stored plaintext file.
cfg = figtion.Config(..., promiscuous=True)
...
cfg.dump()
If concise=True, only modified values are stored in text file.
If promiscuous=False (default behavior), deprecated values are quietly removed.
Otherwise, serialized YAML will clarify default, modified, and deprecated values:
##############################
#### Modified ####
##############################
my server: www.newsite.web
##############################
#### Default ####
##############################
number of nodes: 5
##############################
#### Deprecated ####
##############################
fave cat: Zelda
Dynamic Reloading
cfg = figtion.Config(defaults=defaults, filepath='./conf.yml', reload_interval=5)
# ...some time later, after ./conf.yml has been edited externally...
value = cfg['my server'] # triggers an mtime check; reloads if changed
if cfg.changed:
# propagate the new values to your application, then clear the flag
restart_workers()
cfg.changed = False
reload_interval is in seconds and defaults to 5. Pass 0 to check on every read, or None to disable dynamic reloading entirely.
The changed flag is only set when an actual value differs after reload. Touching the file without changing content will not flip it.
Config Secrets
When you want a public config file and a separate secret one. To keep secret encrypted "at rest", set a secret key environment variable FIGKEY.
os.environ["FIGKEY"] = "seepost-itnote"
cfg = figtion.Config(defaults=defaults,filepath='./conf.yml',secretpath='./creds.yml')
cfg.mask('password')
print(cfg['password'])
This will print the value of 'password', which is stored in ./creds.yml and not ./conf.yml. If the value of 'password' is changed in either YAML file, the password will be updated in ./creds.yml and masked from ./conf.yml the next time the class is loaded in Python. If a secret key is present via environment variable FIGKEY, the values in ./creds.yml will be encrypted using that key.
The dictionary object returned for cfg contains the true value.
If you want everything treated as secret, provide a secretpath and omit filepath:
cfg = figtion.Config(secretpath='./creds.yml')
In this case, no call to mask is needed and everything is encrypted at rest.
Encryption Details
This uses the pynacl bindings to the libsodium library, which uses the XSalsa20 algorithm for encryption. The encryption key provided by the FIGKEY environment variable is truncated to a 32-byte string.
Roadmap
- 1.? - support cascading configuration files
Changelog
- 1.2 - automatic+dynamic reloading of YAML files
- 1.1 - make default, modified, and unused properties explicit in plaintext
- 1.0 - secrets store in encrypted location
- 0.9 - secrets store in separate location
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file figtion-1.2.2.tar.gz.
File metadata
- Download URL: figtion-1.2.2.tar.gz
- Upload date:
- Size: 12.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.25
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
44f1655c6b191866ffcfa5d3a4aa16750e6f79df2c54ca1d397a5e29d6c7656a
|
|
| MD5 |
730d31da6b600a9c39fd9c8e8bb25a34
|
|
| BLAKE2b-256 |
2bf8c0945265862eaf35b1a4b1343dde1bb1a7da56e5a2f81951e04da74d54a1
|
File details
Details for the file figtion-1.2.2-py3-none-any.whl.
File metadata
- Download URL: figtion-1.2.2-py3-none-any.whl
- Upload date:
- Size: 10.2 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.25
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e71ed42c8cb89cc0fd01af8dde6bd8abc012913c5608044f0c388c736305d9ee
|
|
| MD5 |
4d5ddf0af72737d0a34c5ff0c7be4b79
|
|
| BLAKE2b-256 |
653844534fcd749c50d706064312821ba6232ee80d0789e1b4f05c0e8c50e707
|
