A pathy wrapper around aws parameter store
Project description
waddle
the penguins api and tooling around aws's parameter store
ParamBunch
Lets you access secrets stored in a file or from parameter store!
From a file
Create a file called test.yml that will hold your config.
It can include both secrets and non-secrets
meta:
kms_key: dev
region: us-west-2
profile: mycompany
aws.username: aws-user
Now add a secret to that file using the waddle cli
waddle add-secret -f /path/to/test.yml aws.password
waddle will prompt you to enter in the secret. As long as you have a
kms key called dev, waddle will add a kms-data-key-encrypted secret into
test.yml.
Now you can access configuration values in the test.yml configuration file using the following syntax:
from waddle import ParamBunch
conf = ParamBunch(filename='/path/to/test.yml')
AWS_USERNAME = conf.aws.username
AWS_PASSWORD = conf.get('aws.password', 'some default value')
But I want to use parameter store
You can also load configs straight from AWS parameter store by providing a prefix.
from waddle import ParamBunch
conf = ParamBunch(prefix='/path/to/parameters')
# Access /path/to/paramaters/aws/username
AWS_USERNAME = conf.aws.username
You can also embed particular ssm parameters into a waddle configuration
by using the !ssm tag:
dog: !ssm /my/dogs/name
meta:
profile: default
region: us-east-2
This will use the value from ssm for /my/dogs/name for the dog key
in the configuration.
want to waddle your secrets up to SSM from a file?
In certain cases, you may want to keep files locally, but then push them
to aws as part of CI/CD. For example, if you want to keep a centralized
repository of your secrets that is shared among developers, you can encrypt
secrets in your config files using waddle. For application deployment, you can
push those files up to ssm using waddle deploy and/or delete them from ssm
using waddle undeploy.
waddle deploy -f /path/to/params.yml
- or -
waddle undeploy -f /path/to/params.yml
Bunch
A class that offers pathy semantics to access values in a dictionary.
Bunch -- general usage
e.g.,
from waddle import Bunch
values = {
'a': {
'b': {
'c': True,
'd': False,
},
},
}
a = Bunch(values)
assert a.b.c == True
assert a.b.d == False
a.cat.name = 'mycat'
assert a['cat.name'] == 'mycat'
assert 'cat.age' in a == False
assert a.get('cat.age', 22) == 22
assert a.setdefault('cat.age', 45) == 45
Bunch -- env
You can use the built-in env function to use
the dictionary as a set of default values that
can be overridden by environment variables.
e.g.,
import os
from waddle import Bunch
os.environ['FTP_PASSWORD'] = 'password'
config = {
'ftp': {
'host': '127.0.0.1',
'user': 'user',
}
}
config = Bunch(config)
env = config.env()
assert env('FTP_PASSWORD') == 'password'
assert env('FTP_HOST') == '127.0.0.1'
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file waddle-1.9.tar.gz.
File metadata
- Download URL: waddle-1.9.tar.gz
- Upload date:
- Size: 15.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.11.10
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | dba2eaba3c13e3564743f5f3dac92b6cef44499336dee7173eb0164d6f5868b8 |
|
| MD5 | c8d162227ce49606f54aa6fa73fe7184 |
|
| BLAKE2b-256 | 5b432b28043321c7937aa05c3d3459c98c00d5587539901d372bcc6312b8e922 |
