pssecret-server/README.md

# Pssecret server

[![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/psf/black)
[![PyPI - Downloads](https://img.shields.io/pypi/dm/pssecret-server?label=PyPI%20downloads)](https://pypi.org/project/pssecret-server/)

Pssecret is self-hosted service to share secrets (like passwords) with somebody
over the network, but don't want them to appear in chats, unencrypted e-mails, etc.

This service tries to be as anonymous as possible. The only personal information that will be stored
on a server will be IP address of the client that made request to the server.

Service is built with Python, FastAPI and is using Redis for data storage.

## Installation

### Requirements

- Python 3.11+
- Redis
- Python development libraries (optional, only needed for `hiredis` module installation)

### How to install

#### Quick way

If you don't need to configure a lot of things, you can install from [pipx](https://pipx.pypa.io/stable/)

```console
$ pipx install pssecret-server
```

For better performance, install application with [hiredis](https://github.com/redis/hiredis) support.

```console
$ pipx install pssecret-server[hiredis]
```

After that just run the app with

```console
$ pssecret-server
```

This will start the [uvicorn](https://www.uvicorn.org/) server on `127.0.0.1:8000`.
Available configuration options:

```
--host TEXT        Bind socket to this host.  [default: 127.0.0.1]
--port INTEGER     Bind socket to this port. If 0, an available port will be
                   picked.  [default: 8000]
--uds TEXT         Bind to a UNIX domain socket.
--workers INTEGER  Number of worker processes.  Defaults to the
                   $WEB_CONCURRENCY environment variable if available, or 1.
--version          Show the version and exit.
--help             Show this message and exit.
```

#### If you'd like more control

Create virtual environment, install application, run using [uvicorn](https://www.uvicorn.org/) directly.

```console
$ python -m venv .venv
$ source .venv/bin/activate
$ pip install pssecret-server
$ uvicorn pssecret_server.main:app --workers 4 --uds /path/to/socket.sock
```

You can also run [uvicorn](https://www.uvicorn.org/) without activating virtualenv, e.g. from SystemD service

```console
$ /path/to/your/.venv/bin/python -m uvicorn pssecret_server.main:app --workers 4 --uds /path/to/socket.sock
```

### Running Pssecret server

Make sure you have the Redis service running.

After installation is done, you can start pssecret server with `pssecret-server` command.
The web server will be started with [uvicorn](https://www.uvicorn.org/) ASGI web server.

```console
$ pssecret-server
```

### Configuration

Configuration is done via environment variables.

Environment variables:

- `REDIS_URL`: URL for Redis access. Check what values are supported [here](https://redis.readthedocs.io/en/stable/connections.html#redis.Redis.from_url).
- `SECRETS_ENCRYPTION_KEY`: Key used for encrypting stored data.

You can also declare these variables in a `.env` file in the working directory.
Protect this file (or other source from where `SECRETS_ENCRYPTION_KEY` is read by application)
from being read by unauthorized parties.
Renamed project to pssecret-server 2025-01-01 19:01:10 +00:00			`# Pssecret server`
Initial commit 2022-06-09 22:08:36 +00:00
Added Black badge to README 2022-06-12 12:45:42 +00:00			`[![Code style: black](https://img.shields.io/badge/code%20style-black-000000.svg)](https://github.com/psf/black)`
Added PyPI badge 2025-01-08 21:30:03 +00:00			`[![PyPI - Downloads](https://img.shields.io/pypi/dm/pssecret-server?label=PyPI%20downloads)](https://pypi.org/project/pssecret-server/)`
Added Black badge to README 2022-06-12 12:45:42 +00:00
Rename project to pssecret Update of pre-commit configuration 2024-12-25 11:40:57 +00:00			`Pssecret is self-hosted service to share secrets (like passwords) with somebody`
Initial commit 2022-06-09 22:08:36 +00:00			`over the network, but don't want them to appear in chats, unencrypted e-mails, etc.`

			`This service tries to be as anonymous as possible. The only personal information that will be stored`
Updated README with info about technologies which are used in this project 2022-06-12 10:50:48 +00:00			`on a server will be IP address of the client that made request to the server.`

			`Service is built with Python, FastAPI and is using Redis for data storage.`
Added Contributing section to README 2022-06-12 12:44:27 +00:00
Added Installation section to README 2022-06-12 21:56:09 +00:00			`## Installation`

			`### Requirements`

Python 3.11 2022-12-17 08:37:41 +00:00			`- Python 3.11+`
Added Installation section to README 2022-06-12 21:56:09 +00:00			`- Redis`
			- Python development libraries (optional, only needed for `hiredis` module installation)

			`### How to install`

Starting the application with CLI command 2025-01-02 22:59:06 +00:00			`#### Quick way`

			`If you don't need to configure a lot of things, you can install from [pipx](https://pipx.pypa.io/stable/)`
Added Installation section to README 2022-06-12 21:56:09 +00:00
Migrated to poetry 2024-12-25 17:35:01 +00:00			```console
Renamed project to pssecret-server 2025-01-01 19:01:10 +00:00			`$ pipx install pssecret-server`
Added Installation section to README 2022-06-12 21:56:09 +00:00			```

Small wording change in README 2025-01-01 18:21:24 +00:00			`For better performance, install application with [hiredis](https://github.com/redis/hiredis) support.`
Added Installation section to README 2022-06-12 21:56:09 +00:00
Migrated to poetry 2024-12-25 17:35:01 +00:00			```console
Renamed project to pssecret-server 2025-01-01 19:01:10 +00:00			`$ pipx install pssecret-server[hiredis]`
Migrated to poetry 2024-12-25 17:35:01 +00:00			```
Added Installation section to README 2022-06-12 21:56:09 +00:00
Starting the application with CLI command 2025-01-02 22:59:06 +00:00			`After that just run the app with`

			```console
			`$ pssecret-server`
			```

			This will start the [uvicorn](https://www.uvicorn.org/) server on `127.0.0.1:8000`.
			`Available configuration options:`

			```
			`--host TEXT Bind socket to this host. [default: 127.0.0.1]`
			`--port INTEGER Bind socket to this port. If 0, an available port will be`
			`picked. [default: 8000]`
			`--uds TEXT Bind to a UNIX domain socket.`
			`--workers INTEGER Number of worker processes. Defaults to the`
			`$WEB_CONCURRENCY environment variable if available, or 1.`
Added --version option 2025-01-08 22:50:59 +00:00			`--version Show the version and exit.`
Starting the application with CLI command 2025-01-02 22:59:06 +00:00			`--help Show this message and exit.`
			```

			`#### If you'd like more control`

			`Create virtual environment, install application, run using [uvicorn](https://www.uvicorn.org/) directly.`

			```console
			`$ python -m venv .venv`
			`$ source .venv/bin/activate`
			`$ pip install pssecret-server`
			`$ uvicorn pssecret_server.main:app --workers 4 --uds /path/to/socket.sock`
			```

			`You can also run [uvicorn](https://www.uvicorn.org/) without activating virtualenv, e.g. from SystemD service`

			```console
			`$ /path/to/your/.venv/bin/python -m uvicorn pssecret_server.main:app --workers 4 --uds /path/to/socket.sock`
			```

Rename project to pssecret Update of pre-commit configuration 2024-12-25 11:40:57 +00:00			`### Running Pssecret server`
Added instructions on how to start application to README 2022-06-12 22:03:13 +00:00
Migrated to poetry 2024-12-25 17:35:01 +00:00			`Make sure you have the Redis service running.`

Renamed project to pssecret-server 2025-01-01 19:01:10 +00:00			After installation is done, you can start pssecret server with `pssecret-server` command.
Starting the application with CLI command 2025-01-02 22:59:06 +00:00			`The web server will be started with [uvicorn](https://www.uvicorn.org/) ASGI web server.`
Added instructions on how to start application to README 2022-06-12 22:03:13 +00:00
Migrated to poetry 2024-12-25 17:35:01 +00:00			```console
Renamed project to pssecret-server 2025-01-01 19:01:10 +00:00			`$ pssecret-server`
Added instructions on how to start application to README 2022-06-12 22:03:13 +00:00			```
Added Installation section to README 2022-06-12 21:56:09 +00:00
Basic Redis connection configuration 2022-12-17 08:53:50 +00:00			`### Configuration`

Using env vars for configuration instead of toml config 2024-12-26 23:34:54 +00:00			`Configuration is done via environment variables.`
Basic Redis connection configuration 2022-12-17 08:53:50 +00:00
Using env vars for configuration instead of toml config 2024-12-26 23:34:54 +00:00			`Environment variables:`

			- `REDIS_URL`: URL for Redis access. Check what values are supported [here](https://redis.readthedocs.io/en/stable/connections.html#redis.Redis.from_url).
Secrets encryption (#4) Reviewed-on: https://git.ivnglkv.me/root/pssecret-server/pulls/4 Co-authored-by: Ivan Golikov <root@ivnglkv.me> Co-committed-by: Ivan Golikov <root@ivnglkv.me> 2025-01-03 15:06:08 +00:00			- `SECRETS_ENCRYPTION_KEY`: Key used for encrypting stored data.
Basic Redis connection configuration 2022-12-17 08:53:50 +00:00
Using env vars for configuration instead of toml config 2024-12-26 23:34:54 +00:00			You can also declare these variables in a `.env` file in the working directory.
Secrets encryption (#4) Reviewed-on: https://git.ivnglkv.me/root/pssecret-server/pulls/4 Co-authored-by: Ivan Golikov <root@ivnglkv.me> Co-committed-by: Ivan Golikov <root@ivnglkv.me> 2025-01-03 15:06:08 +00:00			Protect this file (or other source from where `SECRETS_ENCRYPTION_KEY` is read by application)
			`from being read by unauthorized parties.`