For a while I've been complaining App Engine needs Admin defined environment variables that can be used to store api keys, passwords, and other sensitive information you wouldn't want in your source code repository. For a while, I was making a keys.py file that I'd import that I'd keep out of the repository. Unfortunately, in rare cases I would switch machines and deploy, forgetting I didn't have keys.py and the app would break. So it's a pretty fragile solution.
I had an idea to keep my keys in a hardcoded Scriptlet (scriptlets.org), but it wouldn't be very secure. So I expanded on the idea and built an app just for this purpose: http://thekeymaster.org Maybe some of you will find it useful. You'd first have to trust its encryption, which is done with the PyCrypt library. The source is also open so what's going on is all transparent. No doubt many of you will be afraid to use it. That's fine. I'm not. But I figure some of you might find it useful. Cheers! Jeff Lindsay -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
