Chalice: Setup environment variables when loading app.py

I have the same problem with chalice package. For example, take a Lambda function with an IAM role that grants read access to an s3 bucket:

import pandas as pd
from chalice import Chalice

app = Chalice(app_name='hello')
data = pd.read_csv('s3://mybucket/some_file.txt')  # no permissions here during `package`

@app.route('/')
def hello():
    # do something with data
    pass

The CI toolchain should not have these permissions. I can catch and ignore the exception, but I'd not want to do this in the actual environment. Is there a clever way to work around this?

+1

Until this is resolved, is there any way to determine the stage an app is in during initialization? I could create my own parameters per stage mechanism, but I need some form of api.xxx() to figure out the stage.

I've verified this issue on Windows and Linux as well. Essentially what I'm trying to do is setup a DB connection and the Cognito configuration outside of a handler and base them on environment variables since that seems best practice in general. As a work around for now I'm just delaying the DB connection until the first handler call and using a singleton pattern. This lets the DB connection have access to environment variables setup from config.json and unblocks local mode. I don't have a good work around for local Cognito connections yet.

+1

@JordonPhillips any progress on this? Thanks!

For those still experiencing pain from environment variables not being set, I created a quick script that will set the appropriate stage environment variables before calling chalice deploy: https://gist.github.com/wollerman/7ec04fd29e13b1b47ef61ae71c61a4d7

It depends on jq being installed.

Usage is simply ./deploy.sh dev or a valid defined stage name.

Does PR #798 fix this?

yes

From: Karl Gutwin [mailto:[email protected]]
Sent: Thursday, April 19, 2018 3:37 PM
To: aws/chalice chalice@noreply.github.com
Cc: Alex Kravetz alex.kravetz@roivant.com; Manual manual@noreply.github.com
Subject: Re: [aws/chalice] Setup environment variables when loading app.py (#584)

Does PR #798https://github.com/aws/chalice/pull/798 fix this?

—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHubhttps://github.com/aws/chalice/issues/584#issuecomment-382855875, or mute the threadhttps://github.com/notifications/unsubscribe-auth/AhDYJc8wYX5zsGb1G4eE1d1iSQeKIEvtks5tqOdbgaJpZM4QIUNC.

I am experiencing a similar issue that is probably related. If I try to load an environment variable like this:

app = Chalice(app_name='myapp')
app.debug = True

BUCKET_NAME = os.environ['BUCKET_NAME']
s3 = boto3.resource('s3', region_name=REGION)
bucket = s3.Bucket(BUCKET_NAME)

When running chalice deploy or chalice package I get the following error:

KeyError: 'BUCKET_NAME'

Yet I have correctly defined BUCKET_NAME in config.json.

Any ideas?

@BigChief45 this is exactly the issue addressed by this thread. There is currently a PR out but no movement from the chalice team on it. The work around options are:
1) defaulting with os.getenv('envvar', 'default')
2) using my deploy script above
3) waiting for the PR to be merged
4) writing your own handling

@JordonPhillips is there any way to know when #798 will be merged? Thanks.

PR has been merged via https://github.com/aws/chalice/pull/833. This will go out in the next release.

@jamesls #833 somewhat addresses the issue, but quoting @JordonPhillips:

Chalice imports app.py during execution here. Naturally this results in all of the code at module level being executed.

Guarding against initialization during packaging can be done with environment variables. Is there a recommended way of suppressing certain initialization during a package operation?

Just FYI, the solution for this worked great for the way I did initialization. Unfortunately I have another use case that is still an issue. I don't use shell scripts for things like deployment, but instead use commands via invoke. When I perform commands/tasks, my app initialization still doesn't have access to env vars as it's not a local/stage environment. Not sure if there's a solution, but wanted to point out another problem area.