Authenticate oracle data base from r script

manish7725 · January 9, 2019, 10:08am

I have production ready R script, and from R script fetching some data from Oracle database,For dev I have hardcoded it , How to authenticate in production?

jlacko · January 9, 2019, 2:50pm

Two options come to my mind:

read the value from a configuration file (and just switch a dev / prod version of the config.txt file); this has possible extra benefit that you can gitignore the file if storing on GitHub or other public server
if the script is run in RStudio you can ask the user for authentication by calling

secret <- rstudioapi::showPrompt(title = "Client Secret", 
                                 message = "Client Secret", 
                                 default = "")

or something along similar lines...

sellorm · January 9, 2019, 5:45pm

The 'config' package is a great way to formalize the approach from your first suggestion.

It works really well for that sort of thing and means you can seamlessly deploy to test or prod and everything just works.

andresrcs · January 9, 2019, 7:00pm

Just for curiosity which is the advantage of using config over setting your credentials in your renviron.site file?

jlacko · January 9, 2019, 9:36pm

For credentials it probably does not really matter.

But in principle: when working on bigger projects I found it advantageous to have separate configuration file - I am not familiar with the config package - as either a text file or an entry in codebook table in database.

One advantage I mentioned already is version control - it is difficult to version control the contents of your renviron file; much more easily done with a small text file.

Another advantage is that you can easily have the config file temporary in nature - say if you have parameters governing a complicated migration. You have a version for development, another for testing (perhaps different ones for several rounds of testing) and then a production version, which you later replace with a "clean" production code in a later release.

For getting rid of the no-longer-required parameter it is easier to remove a file / entry in a codebook database than deleting an entry in renviron file.

jcblum · January 15, 2019, 5:26am

There’s been a fair bit of discussion on similar topics before — you might look st these threads for some more ideas:

Secure way to store database password in package with front-end API to database Package development

I am working on an internal package that will act as a front end to different databases and return data in a structured tidy format. The databases are all accessed via DSN but still require the username and password for odbc::dbConnect() to work. The usernames have read-only privileges on the databases The package will be hosted on a private CRAN mirror behind my corporations firewall. My question is what is the best way to store the credentials of the database in a secure way in the package. To make things more interesting, this will also likely be used on a Connect server, which may make a few of the options given here a little more difficult. I have read through the linked article seve…

Storing user database connection information for package use Package development

I'm creating an R package where the user will first have to connect to a database using the DBI and odbc packages. Subsequent functions will then need to query the database database and then conduct some sort of analysis. So the workflow for the user is (1) connect to the database; (2) do something that depends on the connection. e.g. connect_to_db() analyze_using_db_connection() I'm not sure of the best setup to make things easy on the user and myself, the developer. As I see it, here are my options: (1) for every function in the package have a con argument where the user passes the connection (this seems less than ideal for anyone using the package) (2) Use some sort of class system l…

system · February 5, 2019, 5:26am

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

If you have a query related to it or one of the replies, start a new topic and refer back with a link.