# health.py def check_svb_config(): required = ["SVB_CLIENT_ID", "SVB_API_URL"] missing = [r for r in required if not os.environ.get(r)] if missing: raise Exception(f"Missing SVB config: {missing}") Fix: Create a dedicated config.py module that is imported everywhere. Never write os.environ.get() inside a view or service class. Real-World Use Case: Migrating from SVB to a New Bank The most compelling reason to master SVB config is disaster recovery. Imagine your startup uses SVB for payouts. Suddenly, SVB fails. Your new bank (say, Mercury) has a different API structure.
project/ ├── svb_config/ │ ├── __init__.py │ ├── base.py # Defaults (all environments) │ ├── development.py # Local dev overrides │ ├── staging.py # Staging-specific │ ├── production.py # Production (secrets come from env vars) │ └── validators.py # Custom validation rules ├── .env.template └── manage.py The base.py file contains everything that does not change between environments. Notice how sensitive values are left as placeholders. svb config
To run your app:
export SVB_ENV=production export DJANGO_SETTINGS_MODULE=svb_config python manage.py runserver 1. Secret Rotation Without Downtime A sophisticated SVB config integrates with HashiCorp Vault or AWS Secrets Manager. Instead of environment variables, you call a secret store at boot: # health
# svb_config/__init__.py import os ENVIRONMENT = os.environ.get("SVB_ENV", "development") Imagine your startup uses SVB for payouts
# svb_config/production.py from .base import * SECRET_KEY = os.environ["DJANGO_SECRET_KEY"] DEBUG = False ALLOWED_HOSTS = os.environ.get("ALLOWED_HOSTS", "").split(",") For SVB config in high-security mode, we require all bank creds if not SVB_CLIENT_ID or not SVB_CLIENT_SECRET: raise ValueError("SVB_CLIENT_ID and SVB_CLIENT_SECRET must be set in production")