use settings class inherited from baseSettings

microsoft · Jun 12, 2024 · f3cd2ba · f3cd2ba
1 parent f3d56e1
commit f3cd2ba
Show file tree

Hide file tree

Showing 5 changed files with 40 additions and 39 deletions.
diff --git a/pcfuncs/ipban/__init__.py b/pcfuncs/ipban/__init__.py
@@ -6,7 +6,7 @@
 from azure.identity import DefaultAzureCredential
 from azure.monitor.query import LogsQueryClient
 
-from .constants import BANNED_IP_TABLE, STORAGE_ACCOUNT_URL
+from .config import settings
 from .models import UpdateBannedIPTask
 
 
@@ -18,10 +18,10 @@ def main(mytimer: func.TimerRequest) -> None:
     credential: DefaultAzureCredential = DefaultAzureCredential()
     logs_query_client: LogsQueryClient = LogsQueryClient(credential)
     table_service_client: TableServiceClient = TableServiceClient(
-        endpoint=STORAGE_ACCOUNT_URL, credential=credential
+        endpoint=settings.storage_account_url, credential=credential
     )
     table_client: TableClient = table_service_client.create_table_if_not_exists(
-        BANNED_IP_TABLE
+        settings.banned_ip_table
     )
     task: UpdateBannedIPTask = UpdateBannedIPTask(logs_query_client, table_client)
     task.run()
diff --git a/pcfuncs/ipban/config.py b/pcfuncs/ipban/config.py
@@ -0,0 +1,19 @@
+# config.py
+from pydantic import BaseSettings
+
+
+class Settings(BaseSettings):
+    # Constants related to Azure Table Storage
+    storage_account_url: str = "https://pctapisstagingsa.table.core.windows.net/"
+    banned_ip_table: str = "blobstoragebannedip"
+
+    # Log Analytics Workspace: pc-api-loganalytics
+    log_analytics_workspace_id: str = "78d48390-b6bb-49a9-b7fd-a86f6522e9c4"
+
+    # Time and threshold settings
+    time_window_in_hours: int = 24
+    threshold_read_count_in_gb: int = 5120
+
+
+# Create a global settings instance
+settings = Settings()
diff --git a/pcfuncs/ipban/constants.py b/pcfuncs/ipban/constants.py
diff --git a/pcfuncs/ipban/models.py b/pcfuncs/ipban/models.py
@@ -5,11 +5,7 @@
 from azure.monitor.query import LogsQueryClient
 from azure.monitor.query._models import LogsTableRow
 
-from .constants import (
-    LOG_ANALYTICS_WORKSPACE_ID,
-    THRESHOLD_READ_COUNT_IN_GB,
-    TIME_WINDOW_IN_HOURS,
-)
+from .config import settings
 
 
 class UpdateBannedIPTask:
@@ -29,14 +25,14 @@ def run(self) -> List[LogsTableRow]:
     def get_blob_logs_query_result(self) -> List[LogsTableRow]:
         query: str = f"""
         StorageBlobLogs
-        | where TimeGenerated > ago({TIME_WINDOW_IN_HOURS}h)
+        | where TimeGenerated > ago({settings.time_window_in_hours}h)
         | extend IpAddress = tostring(split(CallerIpAddress, ":")[0])
         | summarize readcount = sum(ResponseBodySize) / (1024 * 1024 * 1024)
         by IpAddress
-        | where readcount > {THRESHOLD_READ_COUNT_IN_GB}
+        | where readcount > {settings.threshold_read_count_in_gb}
         """
         response: Any = self.log_query_client.query_workspace(
-            LOG_ANALYTICS_WORKSPACE_ID, query, timespan=None
+            settings.log_analytics_workspace_id, query, timespan=None
         )
         return response.tables[0].rows
 
@@ -53,8 +49,8 @@ def update_banned_ips(self, query_result: List[LogsTableRow]) -> None:
                 "PartitionKey": ip_address,
                 "RowKey": ip_address,
                 "ReadCount": read_count,
-                "Threshold": THRESHOLD_READ_COUNT_IN_GB,
-                "TimeWindow": TIME_WINDOW_IN_HOURS,
+                "Threshold": settings.threshold_read_count_in_gb,
+                "TimeWindow": settings.time_window_in_hours,
             }
 
             if ip_address in existing_ips:

diff --git a/pcfuncs/tests/ipban/test_ipban.py b/pcfuncs/tests/ipban/test_ipban.py
@@ -7,11 +7,7 @@
 from azure.identity import DefaultAzureCredential
 from azure.monitor.query import LogsQueryClient
 from azure.monitor.query._models import LogsTableRow
-from ipban.constants import (
-    STORAGE_ACCOUNT_URL,
-    THRESHOLD_READ_COUNT_IN_GB,
-    TIME_WINDOW_IN_HOURS,
-)
+from ipban.config import settings
 from ipban.models import UpdateBannedIPTask
 from pytest_mock import MockerFixture
 
@@ -26,22 +22,22 @@ def populate_banned_ip_table(table_client: TableClient) -> List[Dict[str, Any]]:
             "PartitionKey": "192.168.1.1",
             "RowKey": "192.168.1.1",
             "ReadCount": 647,
-            "Threshold": THRESHOLD_READ_COUNT_IN_GB,
-            "TimeWindow": TIME_WINDOW_IN_HOURS,
+            "Threshold": settings.threshold_read_count_in_gb,
+            "TimeWindow": settings.time_window_in_hours,
         },
         {
             "PartitionKey": "192.168.1.2",
             "RowKey": "192.168.1.2",
             "ReadCount": 214,
-            "Threshold": THRESHOLD_READ_COUNT_IN_GB,
-            "TimeWindow": TIME_WINDOW_IN_HOURS,
+            "Threshold": settings.threshold_read_count_in_gb,
+            "TimeWindow": settings.time_window_in_hours,
         },
         {
             "PartitionKey": "192.168.1.3",
             "RowKey": "192.168.1.3",
             "ReadCount": 550,
-            "Threshold": THRESHOLD_READ_COUNT_IN_GB,
-            "TimeWindow": TIME_WINDOW_IN_HOURS,
+            "Threshold": settings.threshold_read_count_in_gb,
+            "TimeWindow": settings.time_window_in_hours,
         },
     ]
     for entity in entities:
@@ -96,7 +92,7 @@ def integration_clients(
     credential: DefaultAzureCredential = DefaultAzureCredential()
     logs_query_client: LogsQueryClient = LogsQueryClient(credential)
     table_service_client: TableServiceClient = TableServiceClient(
-        endpoint=STORAGE_ACCOUNT_URL, credential=credential
+        endpoint=settings.storage_account_url, credential=credential
     )
     table_client: TableClient = table_service_client.create_table_if_not_exists(
         TEST_BANNED_IP_TABLE
@@ -122,8 +118,8 @@ def test_update_banned_ip_integration(
     for ip, expected_read_count in logs_query_result:
         entity: TableEntity = table_client.get_entity(ip, ip)
         assert entity["ReadCount"] == expected_read_count
-        assert entity["Threshold"] == THRESHOLD_READ_COUNT_IN_GB
-        assert entity["TimeWindow"] == TIME_WINDOW_IN_HOURS
+        assert entity["Threshold"] == settings.threshold_read_count_in_gb
+        assert entity["TimeWindow"] == settings.time_window_in_hours
 
 
 def test_update_banned_ip(mock_clients: Tuple[MagicMock, TableClient]) -> None:
@@ -136,5 +132,5 @@ def test_update_banned_ip(mock_clients: Tuple[MagicMock, TableClient]) -> None:
     for ip, expected_read_count in MOCK_LOGS_QUERY_RESULT:
         entity = table_client.get_entity(ip, ip)
         assert entity["ReadCount"] == expected_read_count
-        assert entity["Threshold"] == THRESHOLD_READ_COUNT_IN_GB
-        assert entity["TimeWindow"] == TIME_WINDOW_IN_HOURS
+        assert entity["Threshold"] == settings.threshold_read_count_in_gb
+        assert entity["TimeWindow"] == settings.time_window_in_hours