Hard working python framework with eyes and boots on the ground for your cloud.
* /-\ ~~~~~~~~
* |< >| ~~~~~~
* \@/ ~~~~~~~~
* /|\
* | \
* / \ \
* ___\___
* | | | |
The toil Python framework is for cloud administrators or programmers requiring access to cloud services. Provides a simplistic pattern to utilize and develop sdks and services,and help you get off the ground and into the cloud quickly.
As an enterprise cloud administrator I work with multiple cloud vendors. I routinely write scripts that aggregate data across the cloud vendors, and find it bothersome and unproductive to securely configure config files with multiple profiles, authentication and authorization.
Toil gives you a simple centralized config file in JSON format, allowing multiple profiles per SDK, and encrypting sensitive values.
Built in providers include OCI, AWS, CHEF, SCALR, and RELATIONAL DATA SOURCES.
The framework is extensible by allowing you to add your own services, and follows the "Convention over Configuration" design paradigm. Services are completely exposed so you do not have to worry about the framework hiding implementation details.
Encryption, method decorators for timing and retry, and other utilities are available.
Get the code at https://github.com/drewncrew/toil-py
-
2018-05-08 improved oci library and added vertical instance scaling example
-
2018-05-07 config console tool
After installing toil-py with pip use the config tool to create, encrypt and decrypt the json config.
usage: toil-config [--init CONFIG_DIR_NAME]
create directory, create config.json, create key
[--create FILE_NAME]
create config file with file name
[--create_key FILE_NAME]
create encryption key with file name
[--encrypt CONFIG_FILE_NAME]
encrypt config file
[--decrypt CONFIG_FILE_NAME]
decrypt config file
To get started try this:
toil-config --init /path/.toil
creates a config.json file in your directory and an encryption key
toil-config -k /path/.toil/key --encrypt /path/.toil/config.json
create the file /path/.toil/config.json.encrypted where all values are encrypted
toil-config -k /path/.toil/key --decrypt /Users/aclove/.toil/config.json.encrypted
create the file /path/.toil/config.json.encrypted.decrypted where all values are decrypted
- 2018-05-04 toil is available via pip. https://pypi.org/project/toil-py
pip install toil-py
- 2018-05-04 Second release 1.1.0. Restructured project
- 2018-05-03 Console application toil-config will be released soon in 1.1.0
- 2018-04-26 First release 1.0.0
Here is a quick glance demonstrating how easy it is:
The config file is JSON, may provide YAML in future.
Each service may have multiple profiles defined. For instance, you may have an OCI admin profile, OCI basic profile and OCI read only profile. You may specify different credentials in each profile.
A 'default' profile is used in all method calls if no profile name is provided.
{
"toil": {
"datasources": {
"default": {
"log_level": "info",
"provider": "toil.provider.datasource.AlchemyMySQLDatasourceProvider",
"proxy": "",
"adapter": "mysql+pymysql",
"database": "db_name",
"env": "db_env",
"host": "host_name",
"port": "3306",
"user": "user",
"password": "password"
}
},
"services": {
"oci": {
"alias": "oci",
"log_level": "debug",
"provider": "toil.provider.oci_sdk.OciSdkLib",
"proxy": "",
"default": {
"user": "ocid1.user.oc1...",
"fingerprint": "...",
"key_file": "~/.oci/oci_api_key.pem",
"tenancy": "ocid1.tenancy.oc1...",
"region": "us-ashburn-1"
},
"oci_prod_admin": {
"user": "ocid1.user.oc1...",
"fingerprint": "...",
"key_file": "~/.oci/oci_api_key.pem",
"tenancy": "ocid1.tenancy.oc1...",
"region": "us-ashburn-1"
},
"oci_prod_readonly": {
"user": "ocid1.user.oc1...",
"fingerprint": "...",
"key_file": "~/.oci/oci_api_key.pem",
"tenancy": "ocid1.tenancy.oc1...",
"region": "us-ashburn-1"
},
"oci_dev_readonly": {
"user": "ocid1.user.oc1...",
"fingerprint": "...",
"key_file": "~/.oci/oci_api_key.pem",
"tenancy": "ocid1.tenancy.oc1...",
"region": "us-ashburn-1"
}
},
"aws": {
"alias": "aws",
"log_level": "info",
"provider": "toil.provider.aws.AwsLib",
"proxy": "proxy-host-name:proxy-port",
"default": {
"access_key_id": "access_key_id",
"account_number": "account_number",
"region": "us-east-1",
"role_arn": "arn:aws:iam::#########:role/role-name",
"role_session_name": "role_session_name",
"secret_access_key": "secret_access_key"
},
"aws_profile_1": {
"access_key_id": "access_key_id",
"account_number": "account_number",
"region": "us-east-1",
"role_arn": "arn:aws:iam::#########:role/role-name",
"role_session_name": "role_session_name",
"secret_access_key": "secret_access_key"
}
},
"openstack": {
"alias": "openstack",
"log_level": "info",
"provider": "toil.provider.openstack.OpenStackLib",
"proxy": "",
"default": {
"auth_url": "auth_url",
"domain": "domain",
"password": "password",
"project": "project",
"region": "region",
"user": "user",
"user_domain": "user_domain"
}
}
}
}
}python oci_list_compartment.py -c /data/files/config/toil.json -k YPALQ0g7pIOCCHg0hLL1qi7oRzdWk8Vj3Cr8-HsUoy0=
# process args - get the config file location and encryption key
args = toil.parm.handle.handle_parms(['c', 'k'])
# create cloud framework
framework = toil.framework.create(**args)
framework.oci.session('oci_prod_admin')
session = framework.oci.session(env)
compute_client = session.client('compute')
instances = session.paginate(compute_client.list_instances, session.config()['compartment_id'])
for instance in instances:
logger.info(instance)
session = framework.openstack.session()
openstack_connection = session.connect()
for server in openstack_connection.compute.servers():
meta = server.metadata.get('some-key')
session = framework.scalr.session()
scalr_envs = session.list('/account/environments/')
instance = framework.aws.resource('ec2', 'default').Instance('i-xxxxxxx')
tags = instance.tags
framework.aws.upload_to_s3('some-bucket', '/path to dir', 'folder name')
key = framework.encryptor.generate_key()
confidential_data = "this is an encryption test"
encrypted_data = framework.encryptor.encrypt(confidential_data, encryption_key=key)
decrypted_data = framework.encryptor.decrypt(encrypted_data, encryption_key=key)
my_service_session = framework.your_service_name.session()
my_service_session.your_method()
@toil.util.decorator.timeit(loops=1)
def process(toil):
...
@toil.util.decorator.retry(3, requests.exceptions.RequestException)
def get(self, url, **kwargs):
...
# execute a query
---------------
q = """
select
*
from
some_table
where
some_column like :i
"""
### simple query
---------------
ds_session = framework.datasource.session()
for row in ds_session.exec_sql_query(q, **{"i": "i-30%"}):
print(row['some_column'])
- -c = config file
- -e = environment
- -k = encryption key
- -o = options
- -v = verbose
- generate encryption keys (optional)
- create a config file - sample code in project
- add credentials and passwords to config
- encrypt the config file. (optional)
- use the config file
config_file = 'c:/temp/toil.json'
encrypted_file = 'c:/temp/toil_enc.json'
decrypted_file = 'c:/temp/toil_denc.json'
### generate a config file
toil.config.util.generate_config_file(config_file)
### now update the file with credentials and passwords.
### encrypt file (optional)
key = framework.encryptor.generate_key('/path/toil_key.txt')
framework.encrypt_config_file(config_file, encrypted_file, encryption_key=key)
### decrypt file (optional)
framework.decrypt_config_file(encrypted_file, decrypted_file, encryption_key=key)
# -*- coding: utf-8 -*-
"""
Example custom service
"""
import logging
import toil.util.decorator
import toil.provider.base
import toil.framework
logger = logging.getLogger(__name__)
class ExampleLib(toil.provider.base.BaseProvider):
"""
Class example
Properties :
config: dict with configuration data
"""
def __init__(self, cloud_provider, config):
super(ExampleLib, self).__init__(cloud_provider, config)
def session(self, profile='default'):
"""
Create session.
Args:
profile (str): the profile defined in config to use
Returns:
Session
"""
if profile in self.config:
self.configure_proxy()
session = ExampleSession(self,
api_url=self.config[profile]['api_url'],
api_key_id=self.config[profile]['api_key_id'],
api_key_secret=self.config[profile]['api_key_secret']
)
return session
else:
raise toil.CloudException(
"profile '{profile}' not defined in config {config}".format(profile=profile, config=self.config))
class ExampleSession(object):
"""
example
"""
def __init__(self, client, api_url, api_key_id, api_key_secret):
self.client = client
self.api_url = api_url
self.api_key_id = api_key_id
self.api_key_secret = api_key_secret
super(ExampleSession, self).__init__()
def list(self, path, **kwargs):
return []
def create(self, *args, **kwargs):
return {}
def fetch(self, *args, **kwargs):
return {}
def delete(self, *args, **kwargs):
return {}
def post(self, *args, **kwargs):
return {}
@toil.util.decorator.retry(3, Exception)
def get(self, url, **kwargs):
return {}
"services": {
"example_service": {
"provider": "toil.provider.example.ExampleLib",
"alias": "example_service",
"log_level": "info",
"proxy": "",
"default": {
"account_number": "123",
"access_key_id": "456",
"secret_access_key": "789",
}
"profile2": {
"account_number": "abc",
"access_key_id": "def",
"secret_access_key": "ghi",
}
}
}
...session = toil.example_service.session( )
session.fetch( )
Review the exmple package. Get the code at https://github.com/drewncrew/toil-py
mkdir ~/projects
cd ~/projects
sudo yum groupinstall -y 'development tools'
sudo yum install -y python-devel
sudo yum install -y xz-libs
sudo yum install -y zlib-devel
sudo yum install -y openssl-devel
sudo yum install -y openldap-devel
sudo yum install -y mysql-devel.x86_64
sudo yum install -y mysql-connector-python
wget http://www.python.org/ftp/python/2.7.12/Python-2.7.12.tar.xz
# decode (-d) the XZ encoded tar archive:
xz -d Python-2.7.12.tar.xz
# extraction:
tar -xvf Python-2.7.12.tar
cd Python-2.7.12
./configure
sudo make
sudo make altinstall
#python2.7 should now be in /usr/local/bin/
wget https://bootstrap.pypa.io/get-pip.py
sudo /usr/local/bin/python2.7 get-pip.py
#pip2.7 should now be in /usr/local/bin/
cd ~/projects
sudo /usr/local/bin/pip2.7 install virtualenv
virtualenv --python=/usr/local/bin/python2.7 toilpython27
source ~/projects/bin/activate
#get the current source distribution
wget -O /dist/toil-0.0.1.tar.gz
pip2.7 install -I /home/user/projects/myproject/toil-0.0.1.tar.gz
mkdir ~/projects/myproject
cd ~/projects/myproject/
#makesure your virtual env is active
source ~/projects/bin/activate
which python #should return ~/projects/toilpython27/bin/python
- get the 2.7 release from https://www.python.org/downloads/
- install .whl by
pip install some-package.whl - http://dev.mysql.com/downloads/connector/python/
- get the distribution with pip. see https://pypi.org/project/toil-py/
- pip install -I toil-0.0.1.tar.gz
- Create a source distribution with command python setup.py sdist --formats=gztar