In [1]:
from mio import *
set_mio_log_level('debug')


time="2024-06-21T22:06:05+02:00" level=info msg="core.syncTime[time.go:34] - clock offset -1.036513ms from time.google.com "


# Introduction
Mio is a library designed to store and share protected information. It allows information to be stored in public and cloud locations (e.g., S3) while ensuring that only intended peers have access, and not the storage service providers.

### Identity
Each peer in the information sharing is identified by a cryptographic key, which allows for identification via signature and asymmetric encryption of data. An identity also includes a nickname, a human-readable name for easier management.

An identity consists of a public ID, which is a combination of the nickname and the public part of the cryptographic key.

In [2]:
i = Identity('Admin')  # New identity with name

print('ID: ', i.id)
print('Nick: ', i.nick)
print('Private key', i.private)

ID:  Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!
Nick:  Admin
Private key 67xA0RvyXOw8cweP_gVANgt07gvb2XrpuyHkla8Uw0GHSwpGD7fm6ZuoT_PtgcWBV2QUX0ftSaQENfUGUxrXtNU8FJuLWu3fQxNcMh+VRNfCMB1yomhXadTcQ0FZJnRl


### Local DB
The library requires a local SQLite database to manage metadata and encryption keys. By default, this database is named _mio.db_ and is created in the user's configuration folder.

In [3]:
DB.default()

time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).Define[define.go:38] - SQL Init stmt (line 1) 'CREATE TABLE IF NOT EXISTS mio_configs (\nnode    VARCHAR(128) NOT NULL,\nk       VARCHAR(64) NOT NULL,\ns       VARCHAR(64) NOT NULL,\ni       INTEGER NOT NULL,\nb       BLOB,\nCONSTRAINT pk_safe_key PRIMARY KEY(node,k)\n);\n' executed\n"
time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'MIO_GET_CONFIG' (11) 'SELECT s, i, b FROM mio_configs WHERE node=:node AND k=:key\n'\n"
time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'MIO_SET_CONFIG' (14) 'INSERT INTO mio_configs(node,k,s,i,b) VALUES(:node,:key,:s,:i,:b)\n\tON CONFLICT(node,k) DO UPDATE SET s=:s,i=:i,b=:b\n\tWHERE node=:node AND k=:key\n'\n"
time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'MIO_DEL_CONFIG' (19) 'DELETE FROM 

/home/ea/.config/mio.db

### Safe
The information container is called a safe. The safe integrates a local database, the identity, and a storage URL to create a protected information storage system.

As of this writing, the library supports the following storage media: local filesystem, SFTP, S3, and WebDav. The table below shows the URL format for each storage type. The URL path includes the public ID of the safe's creator and a user-friendly name for the safe.

|Media|Format|Sample|
|-|-|-|
|local|file://_path_/_id_/_name_|file:///tmp/mio/Admin.A3Z1CR0wYMK_gXsRLkpowC3dVFC5rUNEeakiWPyb3D5l5VD1SXEFTxzQKEIvzNvKGEZGYp4yETo77SN+ViGP_00!/sample|
|S3|s3://_server_/_bucket_/_id_/_name_?a=_access_&s=_secret_|s3://d551285d92ed8fa4048fc09ca9113568.r2.cloudflarestorage.com/mio/Admin.A3Z1CR0wYMK_gXsRLkpowC3dVFC5rUNEeakiWPyb3D5l5VD1SXEFTxzQKEIvzNvKGEZGYp4yETo77SN+ViGP_00!/sample?a=acc5aba2f85d63536bbb45f085bb2b23&s=bcc49533aaaa46d929282b542ce598a12f7a4522dac8d5e9d403b39629484c2b&region=auto|


A new safe is created using the _create_ method.

In [4]:
url = 'file:///tmp/mio/{}/sample'.format(i)
s = Safe.create(DB.default(), i, url)
s

time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).Define[define.go:38] - SQL Init stmt (line 1) 'CREATE TABLE IF NOT EXISTS mio_configs (\nnode    VARCHAR(128) NOT NULL,\nk       VARCHAR(64) NOT NULL,\ns       VARCHAR(64) NOT NULL,\ni       INTEGER NOT NULL,\nb       BLOB,\nCONSTRAINT pk_safe_key PRIMARY KEY(node,k)\n);\n' executed\n"
time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'MIO_GET_CONFIG' (11) 'SELECT s, i, b FROM mio_configs WHERE node=:node AND k=:key\n'\n"
time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'MIO_SET_CONFIG' (14) 'INSERT INTO mio_configs(node,k,s,i,b) VALUES(:node,:key,:s,:i,:b)\n\tON CONFLICT(node,k) DO UPDATE SET s=:s,i=:i,b=:b\n\tWHERE node=:node AND k=:key\n'\n"
time="2024-06-21T22:06:06+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'MIO_DEL_CONFIG' (19) 'DELETE FROM 

file:///tmp/mio/Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!/sample

At creation, only the creator belongs to the safe in both the _adm_ and _usr_ groups. Similar to Unix operating systems, a safe has multiple groups that define the permissions for different users (identities). The _get_groups_ method displays the available groups and their associated users.

In [5]:
s.get_groups()

time="2024-06-21T22:06:09+02:00" level=info msg="safe.SyncGroupChain[group.go:187] - group chain is up to date, using the local copy"


{'adm': {'Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!': True},
 'usr': {'Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!': True}}

A user can be added to the safe using the _update_group_ method

In [6]:
alice = Identity('Alice')
s.update_group('usr', Safe.grant, [alice.id])

time="2024-06-21T22:06:10+02:00" level=info msg="safe.SyncGroupChain[group.go:187] - group chain is up to date, using the local copy"
time="2024-06-21T22:06:10+02:00" level=info msg="safe.applyChange[group.go:338] - group change applied: Alice granted to usr by Admin"
time="2024-06-21T22:06:10+02:00" level=info msg="safe.(*Safe).UpdateGroup[group.go:133] - group change created and added to the chain: Alice granted to usr by Admin"
time="2024-06-21T22:06:10+02:00" level=info msg="safe.writeGroupChanges[group.go:447] - group changes written to the store on batches [0]"
time="2024-06-21T22:06:10+02:00" level=info msg="safe.writeKeystore[key.go:237] - keystore usr.ks written successfully by Admin: users Admin, Alice"


{'adm': {'Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!': True},
 'usr': {'Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!': True,
  'Alice.A8pPwB_vHdPSjwbBEuX_2GhJknjDKex0bxsacsdnRLkiLGzGYCHxVIOHvM5p2pmOzv50CIXUXUNyUzm9+GYHnvA!': True}}

### Filesystem
A filesystem provides a file-oriented interface on top of a safe. Use the _put_data_ method to write a new file and the _list_ method to display the updated directory contents.

In [7]:
fs = s.fs()
fs.put_data('sub/test.txt', b'test')
fs.list()

time="2024-06-21T22:06:10+02:00" level=info msg="fs.(*FileSystem).putSync[put.go:121] - putting file 2b471d18f872000 from data"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.writeBody[put.go:194] - writing body to fs/data/2b471d18f872000"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.writeHeader[file.go:83] - encrypting header sub/test.txt"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.writeHeader[file.go:89] - writing header sub/test.txt to fs/headers/82719d195d0fc2f5/2b471d18f872000"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.syncHeaders[file.go:140] - found 1 headers in sub"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.readHeader[file.go:131] - read header sub/test.txt with id 194905828753874944"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.writeFileToDB[file.go:203] - stored dir sub"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.writeFileToDB[file.go:207] - stored file sub/test.txt with id 194905828753874944, args map[attributes:map[] 

[{'ID': 0,
  'Dir': '',
  'Name': 'sub',
  'IsDir': True,
  'GroupName': '',
  'Creator': '',
  'Size': 0,
  'ModTime': '1970-01-01T01:00:00+01:00',
  'Tags': [''],
  'Attributes': None,
  'LocalCopy': '',
  'CopyTime': '1970-01-01T01:00:00+01:00',
  'EncryptionKey': ''}]

In [8]:
fs.list('sub')

time="2024-06-21T22:06:10+02:00" level=info msg="fs.searchFiles[file.go:243] - found file sub/test.txt"
time="2024-06-21T22:06:10+02:00" level=info msg="fs.searchFiles[file.go:245] - found 1 files in sub with search options map[#orderBy: after:-6795364578871345152 before:-6795364578871345152 creator: dir:sub groupName: limit:100 name: offset:0 prefix: safeID:file:///tmp/mio/Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!/sample suffix: tag:]"


[{'ID': 194905828753874944,
  'Dir': 'sub',
  'Name': 'test.txt',
  'IsDir': False,
  'GroupName': 'usr',
  'Creator': 'Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!',
  'Size': 4,
  'ModTime': '2024-06-21T22:06:10.749434166+02:00',
  'Tags': [''],
  'Attributes': None,
  'LocalCopy': '',
  'CopyTime': '2024-06-21T22:06:10.749757202+02:00',
  'EncryptionKey': 'vOp8vracetMVn4SuiRSh7JhIvx7dvFHr8ZkdbwjZpEK7TbFlqtw04QLm2OD2LsnZ'}]

In [9]:
fs.get_data('sub/test.txt')

b'test'

In [10]:
fs.delete('sub/test.txt')
fs.list()

time="2024-06-21T22:06:10+02:00" level=info msg="fs.(*FileSystem).List[list.go:23] - syncing headers of "
time="2024-06-21T22:06:10+02:00" level=info msg="fs.searchFiles[file.go:245] - found 0 files in  with search options map[#orderBy: after:-6795364578871345152 before:-6795364578871345152 creator: dir: groupName: limit:100 name: offset:0 prefix: safeID:file:///tmp/mio/Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!/sample suffix: tag:]"


[]

### Distributed Database
A SQL sqlite API where changes are propagated to other peer through the safe.

A new instance requires a group that will be used during the transfer of data through the safe. Only users that belong to the group will receive updates. 
During the creation of the instance same initialization  _ddl_  can be provided in input; each initialization SQL mut be preceed by a comment _-- INIT_


In [18]:
ddl = """
-- INIT
CREATE TABLE IF NOT EXISTS animal (name TEXT)
"""

ddls = {1.0: ddl}
d = s.database('usr', ddls)

time="2024-06-21T22:17:10+02:00" level=info msg="sqlx.(*DB).Define[define.go:38] - SQL Init stmt (line 2) 'CREATE TABLE IF NOT EXISTS animal (name TEXT)\n' executed\n"
time="2024-06-21T22:17:10+02:00" level=info msg="db.Open[db.go:32] - Opening database on safe file:///tmp/mio/Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!/sample with group usr"


The below code insert a row in the table and then retrieve all the values

In [19]:
d.exec('INSERT INTO animal VALUES (:name)', name = 'cat')
rows = d.query("SELECT * FROM animal ")
for row in rows:
    print(row)

['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']
['cat']


The methods _exec_ and _select_ operate locally. Only when the method _sync_ is called, changes propagates to other peers and at the same outgoing changes are applied.

In [15]:
d.sync()

The API supports a mechanism similar to placeholders defined in the initialization SQL. For instance

In [24]:
ddl = """
-- INIT
CREATE TABLE IF NOT EXISTS animal (name TEXT)

-- INSERT_ANIMAL
INSERT INTO animal VALUES (:name)

-- SELECT_ANIMALS
SELECT * FROM animal

"""

ddls = {1.0: ddl}
d = s.database('usr', ddls)

d.exec('INSERT_ANIMAL', name = 'cat')
rows = d.query('SELECT_ANIMAL')
for row in rows:
    print(row)


time="2024-06-21T22:24:33+02:00" level=info msg="sqlx.(*DB).Define[define.go:38] - SQL Init stmt (line 2) 'CREATE TABLE IF NOT EXISTS animal (name TEXT)\n' executed\n"
time="2024-06-21T22:24:33+02:00" level=info msg="sqlx.(*DB).prepareStatement[define.go:81] - SQL statement compiled: 'INSERT_ANIMAL' (5) 'INSERT INTO animal VALUES (:name)\n'\n"
time="2024-06-21T22:24:33+02:00" level=info msg="db.Open[db.go:32] - Opening database on safe file:///tmp/mio/Admin.A+SjkkwsclT4wsxOZ0mp5qP98Wc0btpoULZ50Uk6vOFj1TwUm4ta7d9DE1wyH5VE18IwHXKiaFdp1NxDQVkmdGU!/sample with group usr"
time="2024-06-21T22:24:33+02:00" level=error msg="invalid SQL statement 'SELECT_ANIMAL': near \"SELECT_ANIMAL\": syntax error\n\tsqlx.(*DB).getStatement: /home/ea/Github/mio/lib/sqlx/define.go:110\n\tsqlx.(*DB).Query: /home/ea/Github/mio/lib/sqlx/query.go:116\n\tdb.(*Database).Query: /home/ea/Github/mio/lib/db/query.go:6\n\tmain.mio_query: /home/ea/Github/mio/lib/export.go:455\n\t_cgoexp_3e178955cd50_mio_query: _cgo_gotype

Exception: invalid SQL statement 'SELECT_ANIMAL': near "SELECT_ANIMAL": syntax error