## **secrets**

### Generate secure random numbers for managing secrets
https://docs.python.org/3/library/secrets.html#module-secrets

### **secrets methods**

In [8]:
import secrets

methods = [i for i  in dir(secrets) if not i.startswith('_')  
           and callable(getattr(secrets,i))]

fmt = '{:15s}'*4

for fn in zip(*[iter(methods)] *4):
    print(fmt.format(*fn))   

SystemRandom   choice         compare_digest randbelow      
randbits       token_bytes    token_hex      token_urlsafe  


### **Generate Random Numbers**

### **Class secrets.SystemRandom**

In [9]:
import secrets
print("Random integer numbers generated using secrets module ")

#Getting systemRandom class instance out of secrets module
secretsGenerator = secrets.SystemRandom()

#random integer number uisng secrets
randomNumber = secretsGenerator.randint(0,50)
print("Secure random number is ", randomNumber)

#random integer number within given range using secrets
randomNumber = secretsGenerator.randrange(4, 40, 4)
print("Secure random number within range is ", randomNumber)

#Secure Random choice using secrets
number_list = [6, 12, 18, 24, 30, 36, 42, 48, 54, 60]
secure_choice = secretsGenerator.choice(number_list)
print ("Secure random choice using secrets is ", secure_choice)

#Secure Random sample uisng secrets
secure_sample = secretsGenerator.sample(number_list, 3)
print ("Secure random sample using secrets is ", secure_sample)

#Secure Random uniform using secrets
secure_float = secretsGenerator.uniform(2.5, 25.5)
print("Secure random float number using secrets is ", secure_float)

Random integer numbers generated using secrets module 
Secure random number is  12
Secure random number within range is  12
Secure random choice using secrets is  48
Secure random sample using secrets is  [36, 6, 24]
Secure random float number using secrets is  3.756444282327051


### **choice(sequence)**
Return a randomly-chosen element from a non-empty sequence.


In [12]:
import secrets

name = 'Manavalan'
secrets.choice(name)

'a'

### **randbelow(n)**
Return a random int in the range [0, n).

In [15]:
import secrets

secrets.randbelow(15)

12

### **randbits(k)**
Return an int with k random bits.

In [17]:
import secrets

print(secrets.randbits(4))
print(secrets.randbits(8))
print(secrets.randbits(16))
print(secrets.randbits(32))

7
126
26938
2062280327


### **Generating tokens**
The secrets module provides functions for generating secure tokens, 

suitable for applications such as password resets, hard-to-guess URLs, and similar.

### **token_bytes([nbytes=None])**

Return a random byte string containing nbytes number of bytes.

In [20]:
import secrets

secrets.token_bytes(10)

b'R\xbcB\te\t>\x8f\xff%'

### **token_hex([nbytes=None])**
Return a random text string, in hexadecimal. The string has nbytes random bytes,

each byte converted to two hex digits. If nbytes is None or not supplied, 

a reasonable default is used.

In [21]:
import secrets

secrets.token_hex(10)

'3c8d1b69f58b052c8478'

### **token_urlsafe([nbytes=None])**
Return a random URL-safe text string, containing nbytes random bytes. 

The text is Base64 encoded, so on average each byte results in approximately 1.3 characters. 

If nbytes is None or not supplied, a reasonable default is used.

In [23]:
import secrets

secrets.token_urlsafe(10)

'Xn46ld2Z5Odw_Q'

### **How many bytes should tokens use?**

### **Reduce timing attack using secrets.compare_digest(a, b)**

### **Excercise**

#### **Generate an eight-character alphanumeric password:**

In [34]:
import string
import secrets
alphabet = string.ascii_letters + string.digits + '!#$%&*+-:=?@_'
password = ''.join(secrets.choice(alphabet) for i in range(8))
password

'$pwpZzl#'

#### **Generate a ten-character alphanumeric password with**
#### **at least one lowercase character, at least one uppercase character, and at least three digits:**

In [44]:
import string
import secrets
alphabet = string.ascii_letters + string.digits
while True:
    password = ''.join(secrets.choice(alphabet) for i in range(10))
    if (any(c.islower() for c in password)
            and any(c.isupper() for c in password)
            and sum(c.isdigit() for c in password) >= 3):
        print(password)
        break


2vpSUY5f3h


### **Generate an XKCD-style passphrase:**

In [47]:
from pathlib import Path
from secrets import choice

words = Path('/usr/share/dict/words').read_text().splitlines()
[choice(words) for _ in range(4)]


['immolates', "thriftiness's", 'chlorofluorocarbons', 'prominently']