tags:

views:

36

answers:

2
+3  Q: 

Correct way to protect a private API Key when versioning a python application on a public git repo

I would like to open-source a python project on Github but it contains an API key that should not be distributed.
I guess there's something better than removing the key each time a "push" is committed to the repo.

Imagine a simplified foomodule.py :

import urllib2
API_KEY = 'XXXXXXXXX'
urllib2.urlopen("http://example.com/foo?id=123%s" % API_KEY ).read()

What i'm thinking is:

  1. Move the API_KEY in a second key.py module importing it on foomodule.py; i would then add key.py on .gitignore file.

  2. Same as 1. but using ConfigParser

Do you know any good programmatic way to handle this scenario?

+1  A: 

One way would be to make it an explicit part of the interface. Make it an argument for your object constructors, for example. Or require the client to extend your class and provide a method, returning the key. It sucks when one needs to edit your module before she can use it.

unbeli  2010-06-09 13:24:00
+1  A: 

have a versioned template key_template.py:

domain = 'example.com'
API_KEY =

Check it out to local machine, fill sensitive fields (such as API_KEY) and save as key.py. Ignore key.py in your version-control software. It really doesn't matter if you keep it in Python files or use ConfigParser.

Automatic way might be to auto-merge on update with the existing key.py file.

SilentGhost  2010-06-09 13:29:30
Uhm, i don't get it; which key file do you import into foomodule.py?
systempuntoout  2010-06-09 13:35:55
@system: `key.py`
SilentGhost  2010-06-09 13:36:57
@Silent so, checkout key.py with empty value and then ignore from version-control?
systempuntoout  2010-06-09 14:13:42
No check out version-controlled template (`key_template.py`), fill the fields and save as `key.py`. Ignore `key.py`
SilentGhost  2010-06-09 14:29:50
Sorry, i'm lost; if somebody will clone my repo, how could be work on import if key.py is missing?
systempuntoout  2010-06-09 14:35:09
@system: `except ImportError: print instructions`?
SilentGhost  2010-06-09 14:37:17
You made it :)! Thanks
systempuntoout  2010-06-09 14:39:41

related questions

Managed Source Control Hosting and Continuous Integration with CVSDude and CruiseControl.net
What is the best way to handle files for a small office?
The theory (and terminology) behind Source Control
Setting up Subversion on Windows as a service
Configuring VisualSVN Server to use _svn instead of .svn
Finding untracked files in a Perforce tree
Learning Version Control, and learning it well
Common Types of Subversion Hooks
Source control for web projects.
How do you deal with configuration files in source control?
Undoing a git reset --hard HEAD~1
Database Version Control
Version control PHP Web Project
DVCS Choices - What's good for Windows?
What is a good Mercurial usage pattern for this setup?
Experience with SVN vs. Team Foundation Server?
What is the difference between all the different types of version control?
Version Control. Getting started...
How do I create a branch in SVN?
Federated (Synced) Subversion servers?
Different Distributed Version Control Systems working together
What are the advantages of using SVN over CVS?
Is there a version control system for database structure changes?
Distributed source control options
How do I version my MS SQL database in SVN?