PyPI - opensecureconf-client - Versions diffs - 1.0.2__py3-none-any.whl → 2.0.2__py3-none-any.whl - Mend

opensecureconf-client 1.0.2py3-none-any.whl → 2.0.2py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

opensecureconf_client.py CHANGED Viewed

@@ -1,15 +1,31 @@
 """
-OpenSecureConf Python Client
+OpenSecureConf Python Client - Enhanced Edition
 A Python client library for interacting with the OpenSecureConf API,
-which provides encrypted configuration management with multithreading support.
+which provides encrypted configuration management with clustering support.
+Enhanced Features:
+- Automatic retry logic with exponential backoff
+- Cluster awareness (status, health)
+- Connection pooling
+- Structured logging
+- Batch operations
+- Enhanced input validation
+- Health check utilities
 """
 from typing import Any, Dict, List, Optional
+import logging
+import time
 import requests
-from requests.exceptions import Timeout
+from requests.adapters import HTTPAdapter
+from requests.exceptions import Timeout, RequestException
+from urllib3.util.retry import Retry
+# ============================================================================
+# EXCEPTIONS
+# ============================================================================
 class OpenSecureConfError(Exception):
     """Base exception for OpenSecureConf client errors."""
@@ -27,9 +43,17 @@ class ConfigurationExistsError(OpenSecureConfError):
     """Raised when attempting to create a configuration that already exists."""
+class ClusterError(OpenSecureConfError):
+    """Raised when cluster operations fail."""
+# ============================================================================
+# CLIENT
+# ============================================================================
 class OpenSecureConfClient:
     """
-    Client for interacting with the OpenSecureConf API.
+    Enhanced client for interacting with the OpenSecureConf API.
     This client provides methods to create, read, update, delete, and list
     encrypted configuration entries stored in an OpenSecureConf service.
@@ -39,12 +63,15 @@ class OpenSecureConfClient:
         user_key (str): The encryption key used for authentication and encryption/decryption.
         api_key (Optional[str]): Optional API key for additional authentication.
         timeout (int): Request timeout in seconds.
+        logger (logging.Logger): Logger instance for debugging.
     Example:
         >>> client = OpenSecureConfClient(
         ...     base_url="http://localhost:9000",
         ...     user_key="my-secret-key-123",
-        ...     api_key="optional-api-key"
+        ...     api_key="optional-api-key",
+        ...     enable_retry=True,
+        ...     log_level="INFO"
         ... )
         >>> config = client.create("database", {"host": "localhost", "port": 5432})
         >>> print(config["value"])
@@ -57,10 +84,16 @@ class OpenSecureConfClient:
         user_key: str,
         api_key: Optional[str] = None,
         timeout: int = 30,
-        verify_ssl: bool = True
+        verify_ssl: bool = True,
+        enable_retry: bool = True,
+        max_retries: int = 3,
+        backoff_factor: float = 1.0,
+        pool_connections: int = 10,
+        pool_maxsize: int = 20,
+        log_level: str = "WARNING"
     ):
         """
-        Initialize the OpenSecureConf client.
+        Initialize the OpenSecureConf client with enhanced features.
         Args:
             base_url: The base URL of the OpenSecureConf API (e.g., "http://localhost:9000")
@@ -68,35 +101,87 @@ class OpenSecureConfClient:
             api_key: Optional API key for additional authentication
             timeout: Request timeout in seconds (default: 30)
             verify_ssl: Whether to verify SSL certificates (default: True)
+            enable_retry: Enable automatic retry with exponential backoff (default: True)
+            max_retries: Maximum number of retries for failed requests (default: 3)
+            backoff_factor: Backoff factor for retry delays (default: 1.0)
+            pool_connections: Number of connection pools (default: 10)
+            pool_maxsize: Maximum pool size (default: 20)
+            log_level: Logging level (default: WARNING)
         Raises:
-            ValueError: If user_key is shorter than 8 characters
+            ValueError: If user_key is shorter than 8 characters or invalid parameters
         """
+        # Validation
         if len(user_key) < 8:
             raise ValueError("User key must be at least 8 characters long")
+        if not base_url:
+            raise ValueError("base_url cannot be empty")
+        if timeout <= 0:
+            raise ValueError("timeout must be positive")
+        if max_retries < 0:
+            raise ValueError("max_retries must be non-negative")
+        # Configuration
         self.base_url = base_url.rstrip("/")
         self.user_key = user_key
         self.api_key = api_key
         self.timeout = timeout
         self.verify_ssl = verify_ssl
+        # Setup logging
+        self.logger = logging.getLogger(__name__)
+        self.logger.setLevel(getattr(logging, log_level.upper(), logging.WARNING))
+        if not self.logger.handlers:
+            handler = logging.StreamHandler()
+            formatter = logging.Formatter(
+                '%(asctime)s - %(name)s - %(levelname)s - %(message)s'
+            )
+            handler.setFormatter(formatter)
+            self.logger.addHandler(handler)
+        # Initialize session
         self._session = requests.Session()
+        # Setup connection pooling
+        adapter = HTTPAdapter(
+            pool_connections=pool_connections,
+            pool_maxsize=pool_maxsize
+        )
+        # Setup retry strategy if enabled
+        if enable_retry:
+            retry_strategy = Retry(
+                total=max_retries,
+                backoff_factor=backoff_factor,
+                status_forcelist=[429, 500, 502, 503, 504],
+                allowed_methods=["HEAD", "GET", "PUT", "DELETE", "OPTIONS", "TRACE", "POST"]
+            )
+            adapter = HTTPAdapter(
+                max_retries=retry_strategy,
+                pool_connections=pool_connections,
+                pool_maxsize=pool_maxsize
+            )
+            self.logger.info(f"Retry enabled: max_retries={max_retries}, backoff_factor={backoff_factor}")
+        self._session.mount("http://", adapter)
+        self._session.mount("https://", adapter)
         # Setup headers
         headers = {
-            "x-user-key": self.user_key,
+            "x-user-key": self.user_key,
             "Content-Type": "application/json"
         }
-        # Add X-API-Key header if api_key is provided
         if self.api_key:
             headers["X-API-Key"] = self.api_key
         self._session.headers.update(headers)
+        self.logger.info(f"Client initialized for {self.base_url}")
     def _make_request(self, method: str, endpoint: str, **kwargs) -> Any:
         """
-        Make an HTTP request to the API with error handling.
+        Make an HTTP request to the API with error handling and logging.
         Args:
             method: HTTP method (GET, POST, PUT, DELETE)
@@ -117,38 +202,89 @@ class OpenSecureConfClient:
         kwargs.setdefault("timeout", self.timeout)
         kwargs.setdefault("verify", self.verify_ssl)
+        start_time = time.time()
+        self.logger.debug(f"{method} {url}")
         try:
             response = self._session.request(method, url, **kwargs)
+            duration = time.time() - start_time
+            self.logger.info(
+                f"{method} {endpoint} - Status: {response.status_code} - Duration: {duration:.3f}s"
+            )
+            # Handle error responses
             if response.status_code == 401:
+                self.logger.error("Authentication failed: invalid or missing user key")
                 raise AuthenticationError(
                     "Authentication failed: invalid or missing user key"
                 )
+            if response.status_code == 403:
+                self.logger.error("Forbidden: invalid API key")
+                raise AuthenticationError("Forbidden: invalid API key")
             if response.status_code == 404:
-                raise ConfigurationNotFoundError("Configuration not found")
+                error_detail = response.json().get("detail", "Configuration not found")
+                self.logger.warning(f"Not found: {error_detail}")
+                raise ConfigurationNotFoundError(error_detail)
             if response.status_code == 400:
                 error_detail = response.json().get("detail", "Bad request")
                 if "already exists" in error_detail.lower():
+                    self.logger.warning(f"Configuration exists: {error_detail}")
                     raise ConfigurationExistsError(error_detail)
+                self.logger.error(f"Bad request: {error_detail}")
                 raise OpenSecureConfError(f"Bad request: {error_detail}")
             if response.status_code >= 400:
                 error_detail = response.json().get("detail", "Unknown error")
+                self.logger.error(f"API error {response.status_code}: {error_detail}")
                 raise OpenSecureConfError(
                     f"API error ({response.status_code}): {error_detail}"
                 )
+            # Handle successful responses
             if response.status_code == 204 or not response.content:
                 return None
             return response.json()
         except (ConnectionError, Timeout) as e:
+            self.logger.error(f"Connection error: {str(e)}")
             raise ConnectionError(
                 f"Failed to connect to {self.base_url}: {str(e)}"
             ) from e
+        except RequestException as e:
+            self.logger.error(f"Request error: {str(e)}")
+            raise OpenSecureConfError(f"Request failed: {str(e)}") from e
         except ValueError as e:
+            self.logger.error(f"Invalid JSON response: {str(e)}")
             raise OpenSecureConfError(f"Invalid JSON response: {str(e)}") from e
+    # ========================================================================
+    # HEALTH & STATUS
+    # ========================================================================
+    def ping(self) -> bool:
+        """
+        Check if the API server is reachable and responding.
+        Returns:
+            True if server is healthy, False otherwise
+        Example:
+            >>> if client.ping():
+            ...     print("Server is healthy")
+        """
+        try:
+            self.get_service_info()
+            self.logger.debug("Ping successful")
+            return True
+        except Exception as e:
+            self.logger.warning(f"Ping failed: {str(e)}")
+            return False
     def get_service_info(self) -> Dict[str, Any]:
         """
         Get information about the OpenSecureConf service.
@@ -159,12 +295,65 @@ class OpenSecureConfClient:
         Example:
             >>> info = client.get_service_info()
             >>> print(info["version"])
-            1.0.0
+            2.1.0
         """
         return self._make_request("GET", "/")
+    # ========================================================================
+    # CLUSTER OPERATIONS
+    # ========================================================================
+    def get_cluster_status(self) -> Dict[str, Any]:
+        """
+        Get cluster status and node information.
+        Returns:
+            Dictionary containing cluster status with fields:
+            - enabled: Whether clustering is enabled
+            - mode: Cluster mode (replica or federated)
+            - node_id: Current node identifier
+            - total_nodes: Total number of nodes in cluster
+            - healthy_nodes: Number of healthy nodes
+        Raises:
+            ClusterError: If cluster status cannot be retrieved
+        Example:
+            >>> status = client.get_cluster_status()
+            >>> print(f"Cluster mode: {status['mode']}")
+            >>> print(f"Healthy nodes: {status['healthy_nodes']}/{status['total_nodes']}")
+        """
+        try:
+            return self._make_request("GET", "/cluster/status")
+        except OpenSecureConfError as e:
+            raise ClusterError(f"Failed to get cluster status: {str(e)}") from e
+    def get_cluster_health(self) -> Dict[str, Any]:
+        """
+        Check cluster node health.
+        Returns:
+            Dictionary containing health status
+        Example:
+            >>> health = client.get_cluster_health()
+            >>> print(health["status"])
+            healthy
+        """
+        try:
+            return self._make_request("GET", "/cluster/health")
+        except OpenSecureConfError as e:
+            raise ClusterError(f"Failed to check cluster health: {str(e)}") from e
+    # ========================================================================
+    # CONFIGURATION CRUD OPERATIONS
+    # ========================================================================
     def create(
-        self, key: str, value: Dict[str, Any], category: Optional[str] = None
+        self,
+        key: str,
+        value: Dict[str, Any],
+        category: Optional[str] = None
     ) -> Dict[str, Any]:
         """
         Create a new encrypted configuration entry.
@@ -183,7 +372,7 @@ class OpenSecureConfClient:
         Raises:
             ConfigurationExistsError: If configuration key already exists
-            ValueError: If key is invalid
+            ValueError: If key or value is invalid
         Example:
             >>> config = client.create(
@@ -192,11 +381,17 @@ class OpenSecureConfClient:
             ...     category="production"
             ... )
         """
-        if not key or len(key) > 255:
+        # Enhanced validation
+        if not key or not isinstance(key, str):
+            raise ValueError("Key must be a non-empty string")
+        if len(key) > 255:
             raise ValueError("Key must be between 1 and 255 characters")
+        if not isinstance(value, dict):
+            raise ValueError("Value must be a dictionary")
+        if category and len(category) > 100:
+            raise ValueError("Category must be max 100 characters")
         payload = {"key": key, "value": value, "category": category}
         return self._make_request("POST", "/configs", json=payload)
     def read(self, key: str) -> Dict[str, Any]:
@@ -211,16 +406,23 @@ class OpenSecureConfClient:
         Raises:
             ConfigurationNotFoundError: If configuration key does not exist
+            ValueError: If key is invalid
         Example:
             >>> config = client.read("database")
             >>> print(config["value"]["host"])
             localhost
         """
+        if not key or not isinstance(key, str):
+            raise ValueError("Key must be a non-empty string")
         return self._make_request("GET", f"/configs/{key}")
     def update(
-        self, key: str, value: Dict[str, Any], category: Optional[str] = None
+        self,
+        key: str,
+        value: Dict[str, Any],
+        category: Optional[str] = None
     ) -> Dict[str, Any]:
         """
         Update an existing configuration entry with new encrypted value.
@@ -235,6 +437,7 @@ class OpenSecureConfClient:
         Raises:
             ConfigurationNotFoundError: If configuration key does not exist
+            ValueError: If parameters are invalid
         Example:
             >>> config = client.update(
@@ -242,8 +445,14 @@ class OpenSecureConfClient:
             ...     value={"host": "db.example.com", "port": 5432}
             ... )
         """
-        payload = {"value": value, "category": category}
+        if not key or not isinstance(key, str):
+            raise ValueError("Key must be a non-empty string")
+        if not isinstance(value, dict):
+            raise ValueError("Value must be a dictionary")
+        if category and len(category) > 100:
+            raise ValueError("Category must be max 100 characters")
+        payload = {"value": value, "category": category}
         return self._make_request("PUT", f"/configs/{key}", json=payload)
     def delete(self, key: str) -> Dict[str, str]:
@@ -258,12 +467,16 @@ class OpenSecureConfClient:
         Raises:
             ConfigurationNotFoundError: If configuration key does not exist
+            ValueError: If key is invalid
         Example:
             >>> result = client.delete("database")
             >>> print(result["message"])
             Configuration 'database' deleted successfully
         """
+        if not key or not isinstance(key, str):
+            raise ValueError("Key must be a non-empty string")
         return self._make_request("DELETE", f"/configs/{key}")
     def list_all(self, category: Optional[str] = None) -> List[Dict[str, Any]]:
@@ -285,16 +498,249 @@ class OpenSecureConfClient:
         params = {"category": category} if category else {}
         return self._make_request("GET", "/configs", params=params)
+    # ========================================================================
+    # BATCH OPERATIONS
+    # ========================================================================
+    def bulk_create(
+        self,
+        configs: List[Dict[str, Any]],
+        ignore_errors: bool = False
+    ) -> List[Dict[str, Any]]:
+        """
+        Create multiple configurations in batch.
+        Args:
+            configs: List of configuration dictionaries with 'key', 'value', and optional 'category'
+            ignore_errors: If True, continue on errors and return partial results
+        Returns:
+            List of created configuration dictionaries
+        Raises:
+            ValueError: If configs format is invalid
+            OpenSecureConfError: If creation fails and ignore_errors is False
+        Example:
+            >>> configs = [
+            ...     {"key": "db1", "value": {"host": "localhost"}, "category": "prod"},
+            ...     {"key": "db2", "value": {"host": "remote"}, "category": "prod"}
+            ... ]
+            >>> results = client.bulk_create(configs)
+            >>> print(f"Created {len(results)} configurations")
+        """
+        if not isinstance(configs, list):
+            raise ValueError("configs must be a list")
+        results = []
+        errors = []
+        for i, config in enumerate(configs):
+            if not isinstance(config, dict):
+                raise ValueError(f"Config at index {i} must be a dictionary")
+            if "key" not in config or "value" not in config:
+                raise ValueError(f"Config at index {i} missing required 'key' or 'value'")
+            try:
+                result = self.create(
+                    key=config["key"],
+                    value=config["value"],
+                    category=config.get("category")
+                )
+                results.append(result)
+                self.logger.info(f"Bulk create: created '{config['key']}'")
+            except Exception as e:
+                error_msg = f"Failed to create '{config['key']}': {str(e)}"
+                self.logger.error(error_msg)
+                errors.append({"key": config["key"], "error": str(e)})
+                if not ignore_errors:
+                    raise OpenSecureConfError(error_msg) from e
+        if errors:
+            self.logger.warning(f"Bulk create completed with {len(errors)} errors")
+        return results
+    def bulk_read(
+        self,
+        keys: List[str],
+        ignore_errors: bool = False
+    ) -> List[Dict[str, Any]]:
+        """
+        Read multiple configurations in batch.
+        Args:
+            keys: List of configuration keys to retrieve
+            ignore_errors: If True, skip missing keys and return partial results
+        Returns:
+            List of configuration dictionaries
+        Example:
+            >>> configs = client.bulk_read(["db1", "db2", "api"])
+            >>> print(f"Retrieved {len(configs)} configurations")
+        """
+        if not isinstance(keys, list):
+            raise ValueError("keys must be a list")
+        results = []
+        errors = []
+        for key in keys:
+            try:
+                result = self.read(key)
+                results.append(result)
+            except ConfigurationNotFoundError as e:
+                self.logger.warning(f"Bulk read: key '{key}' not found")
+                errors.append({"key": key, "error": str(e)})
+                if not ignore_errors:
+                    raise
+            except Exception as e:
+                self.logger.error(f"Bulk read: failed to read '{key}': {str(e)}")
+                errors.append({"key": key, "error": str(e)})
+                if not ignore_errors:
+                    raise
+        return results
+    def bulk_delete(
+        self,
+        keys: List[str],
+        ignore_errors: bool = False
+    ) -> Dict[str, Any]:
+        """
+        Delete multiple configurations in batch.
+        Args:
+            keys: List of configuration keys to delete
+            ignore_errors: If True, continue on errors
+        Returns:
+            Dictionary with summary: {"deleted": [...], "failed": [...]}
+        Example:
+            >>> result = client.bulk_delete(["temp1", "temp2", "temp3"])
+            >>> print(f"Deleted: {len(result['deleted'])}, Failed: {len(result['failed'])}")
+        """
+        if not isinstance(keys, list):
+            raise ValueError("keys must be a list")
+        deleted = []
+        failed = []
+        for key in keys:
+            try:
+                self.delete(key)
+                deleted.append(key)
+                self.logger.info(f"Bulk delete: deleted '{key}'")
+            except Exception as e:
+                self.logger.error(f"Bulk delete: failed to delete '{key}': {str(e)}")
+                failed.append({"key": key, "error": str(e)})
+                if not ignore_errors:
+                    raise
+        return {"deleted": deleted, "failed": failed}
+    # ========================================================================
+    # UTILITY METHODS
+    # ========================================================================
+    def exists(self, key: str) -> bool:
+        """
+        Check if a configuration key exists.
+        Args:
+            key: Configuration key to check
+        Returns:
+            True if key exists, False otherwise
+        Example:
+            >>> if client.exists("database"):
+            ...     print("Configuration exists")
+        """
+        try:
+            self.read(key)
+            return True
+        except ConfigurationNotFoundError:
+            return False
+    def get_or_default(
+        self,
+        key: str,
+        default: Dict[str, Any]
+    ) -> Dict[str, Any]:
+        """
+        Get configuration value or return default if not found.
+        Args:
+            key: Configuration key to retrieve
+            default: Default value to return if key not found
+        Returns:
+            Configuration dictionary or default value
+        Example:
+            >>> config = client.get_or_default(
+            ...     "database",
+            ...     {"host": "localhost", "port": 5432}
+            ... )
+        """
+        try:
+            return self.read(key)
+        except ConfigurationNotFoundError:
+            return {"key": key, "value": default, "category": None}
+    def count(self, category: Optional[str] = None) -> int:
+        """
+        Count total configurations, optionally filtered by category.
+        Args:
+            category: Optional category filter
+        Returns:
+            Number of configurations
+        Example:
+            >>> total = client.count()
+            >>> prod_count = client.count(category="production")
+        """
+        configs = self.list_all(category=category)
+        return len(configs)
+    def list_categories(self) -> List[str]:
+        """
+        Get list of all unique categories.
+        Returns:
+            List of category names
+        Example:
+            >>> categories = client.list_categories()
+            >>> print(f"Categories: {', '.join(categories)}")
+        """
+        configs = self.list_all()
+        categories = set()
+        for config in configs:
+            cat = config.get("category")
+            if cat:
+                categories.add(cat)
+        return sorted(list(categories))
+    # ========================================================================
+    # SESSION MANAGEMENT
+    # ========================================================================
     def close(self):
         """
         Close the underlying HTTP session.
         Should be called when the client is no longer needed to free resources.
         Example:
             >>> client.close()
         """
         self._session.close()
+        self.logger.info("Client session closed")
     def __enter__(self):
         """Context manager entry."""
@@ -304,6 +750,14 @@ class OpenSecureConfClient:
         """Context manager exit - automatically closes session."""
         self.close()
+    def __repr__(self):
+        """String representation of client."""
+        return f"OpenSecureConfClient(base_url='{self.base_url}')"
+# ============================================================================
+# EXPORTS
+# ============================================================================
 __all__ = [
     "OpenSecureConfClient",
@@ -311,4 +765,5 @@ __all__ = [
     "AuthenticationError",
     "ConfigurationNotFoundError",
     "ConfigurationExistsError",
+    "ClusterError",
 ]

opensecureconf-client 1.0.2__py3-none-any.whl → 2.0.2__py3-none-any.whl

opensecureconf-client 1.0.2py3-none-any.whl → 2.0.2py3-none-any.whl