Skip to content
/ CryptoConfig Public

Python class for handling encrypted elements in a config file. Extension of ConfigParser.

License

BSD-3-Clause license
9 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

NREL/CryptoConfig

1 Branch2 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

davidfmartindavidfmartin
Build conversion complete. Close #3
Nov 1, 2023
539afa6 · Nov 1, 2023

History

12 Commits
.vscode
.vscode
Nov 1, 2023
bin
bin
Nov 1, 2023
crypto_config
crypto_config
Nov 1, 2023
tests
tests
May 8, 2018
.gitignore
.gitignore
May 8, 2018
License.txt
License.txt
Jan 22, 2020
README.md
README.md
Aug 13, 2021
cryptoconfig.code-workspace
cryptoconfig.code-workspace
May 8, 2018
pyproject.toml
pyproject.toml
Nov 1, 2023
setup.cfg
setup.cfg
Nov 1, 2023

Repository files navigation

cryptoconfig

Python class for handling encrypted elements in a config file. Extension of ConfigParser.

This class overides the 'get' method of ConfigParser replacing it with Fernet symmetric encryption so that you can safely store encrypted passwords in an ini file.

Example ini file.

[PARSE_TEST]
user = dmartin
password = ba$1234!
password_encoded = enc(gAAAAABa7JOds0uLwiKb44pTUvLuzbcxLsmpWL7kCFYTKX0JTW6q_JLubSKFrecCF1ShsMvzEBnt16Da_LsgUN5ff5LwB6zwPw==)

Example code to parse the above ini example. Note: The encoded password is the same as the unencoded to demonstrate the use. Storing the crypt_key in the program should be discouraged. A better example would load the key from an environment variable.

from crypto_config import cryptoconfigparser
import os
import sys

if __name__ == "__main__":
    try:
        # CryptoConfigParser application encrypton string
        key = '-nBUOebi1SsnpU8k7lHym6oHSFN5Id3xM0Wezh8DHxg='

        properties = cryptoconfigparser.CryptoConfigParser(crypt_key=key)
        properties_file = os.path.dirname(__file__) + "/sample_parse.ini"
        properties.read(properties_file)
    
        user = properties.get('PARSE_TEST', 'user')
        password = properties.get('PARSE_TEST', 'password')
        password_encoded = properties.get('PARSE_TEST', 'password_encoded')
    except cryptoconfigparser.ParsingError as err:
        print('Could not parse:', err)
        sys.exit(1)

    print(f"user: {user} password: {password} decoded: {password_encoded}")

To install this from git use:

pip install git+https://github.com/NREL/CryptoConfig.git

This package installs a helper command line utility called cryptocfg.py to generate, encrypt, and decrypt Fernet password strings.

use: cryptocfg.py [options]
where options include:
	--decrypt= | -d, decrypt the string, requires -i and -p 
	--encrypt= | -e, encrypt the string, requires -i and -p 
	--input= | -i, string to encrypt or decrypt, if not supplied read from stdin
	--password= | -p, key for encrypting or decrypting a string, if not supplied will be prompted for
	--genkey generate an encryption/decryption string
examples:
Encrypt:
cryptocfg.py -i 'f00Baz!1234$' -p 'jsZ9EkC3_XnP88UwIGQdFWpKPpeaD61RqJy8DE6lLYk=' -e
Decrypt:
cryptocfg.py -i 'gAAAAABa8IpcHE03lpmYYhptWlkOqKMvstpbYlHqp9Asq5qVY024X7OhokVto2aF_uzCRP47OVdHT5VE6f32xIvvoMlDX3_Ceg==' -p 'jsZ9EkC3_XnP88UwIGQdFWpKPpeaD61RqJy8DE6lLYk=' -d

About

Python class for handling encrypted elements in a config file. Extension of ConfigParser.

Topics

python encryption configparser fernet cryptography-tools

Resources

Readme

License

BSD-3-Clause license
Activity
Custom properties

Stars

9 stars

Watchers

3 watching

Forks

9 forks
Report repository

Releases

2 tags

Packages

No packages published

Contributors 2

Languages