Package gaesecrets implements storage of secret blobs on top of datastore.
It is not super secure, but we have what we have: there's no other better mechanism to persistently store non-static secrets on GAE.
All secrets are global (live in default GAE namespace).
Config can be used to tweak parameters of the store. It is fine to use default values.