Python: How to use python-dotenv

1 minute read

Updated:

Python-dotenv (Keep your secrets safe)

Do you know how to keep your secrets safe during development and production? In this article, I am going to guide you on how to work with SECRETS and KEYS without exposing them to the outside world, and keep them safe during development.

Python-dotenv is a Python module that allows you to specify environment variables in a traditional UNIX-like “.env” (dot-env) file within your Python project directory.

Environment variables are the set of key-value pairs for the current user environment. They are generally set by the operating system and the current user-specific configurations.

Python-dotenv helps us work with SECRETS and KEYS without exposing them to the outside world.

Installation

#Create a new virtual environment
python3 -m venv venv
#activate
source venv/bin/activate
#install
pip install python-dotenv

Using the python-dotenv module

  • First, you need to create a new .env file, and then add the name and value of the variables as key-value pairs.
#.env file
ID = "12345689"
SECRET_KEY = "gsabijwjnciiwbjksa"
  • Create app.py file in same location.
└─[$] <> tree -a
.
├── app.py
├── .env
  • Import and Call python-dotenv.
## importing the load_dotenv from the python-dotenv module
from dotenv import load_dotenv

load_dotenv()
  • Access the Environment Variables
# importing the load_dotenv from the python-dotenv module
from dotenv import load_dotenv
# Provides ways to access the Operating System and allows us to read the environment variables
import os

load_dotenv()

my_id = os.getenv("ID")
my_secret_key = os.getenv("SECRET_KEY")

def myEnvironment():
    print(f'My id is: {my_id}.')
    print(f'My secret key is: {my_secret_key}.')

if __name__ == "__main__":
    myEnvironment()
  • Output
ID = "12345689"
SECRET_KEY = "gsabijwjnciiwbjksa"

A large number of security vulnerabilities can be resolved by taking care of leaked credentials, and the python-dotenv helps develop a safer project environment to work with, both during and after development.

In case you accidentally exposed your secret/key, do not panic because you can always generate a new key. Also, I would recommend generating new keys before deployment as a safety measure.

Don’t use USERNAME in your environment as a key, it will conflict with your host system and load system username.

Comments

You May Also Enjoy

Linux Terminal and Vim: An Integration Guide

5 minute read

Introduction Productivity tools on Linux often include both a status line and a prompt. The function of a status line is to display important information relevant to the program...

Ansible Lab setup with Vagrant

8 minute read

Introduction Ansible is an open-source, powerful, and simple tool for client-server and network device automation. Ansible is agent-less, which means nothing to install on a cli...

Vagrant with VMware Workstation

2 minute read

Introduction Vagrant is for virtual machines what Docker is for containers. Vagrant is a wrapper for different hypervisor programs like VMware Workstation Pro, VMware Player, Vi...