d3163a5bff
- pgSchema "mesh" with 4 tables isolating the peer mesh domain - Enums: visibility, transport, tier, role - audit_log is metadata-only (E2E encryption enforced at broker/client) - Cascade on mesh delete, soft-delete via archivedAt/revokedAt Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
4.4 KiB
title, description, url
| title | description | url |
|---|---|---|
| Environment variables | Learn how to configure environment variables. | /docs/web/configuration/environment-variables |
Environment variables
Environment variables are defined in the .env file in the root of the repository and in the root of the apps/web package.
- Shared environment variables: Defined in the root
.envfile. These are shared between environments (e.g., development, staging, production) and apps (e.g., web, mobile). - Environment-specific variables: Defined in
.env.developmentand.env.productionfiles. These are specific to the development and production environments. - App-specific variables: Defined in the app-specific directory (e.g.,
apps/web). These are specific to the app and are not shared between apps. - Secret keys: Not stored in the
.envfile. Instead, they are stored in the environment variables of the CI/CD system. - Local secret keys: If you need to use secret keys locally, you can store them in the
.env.localfile. This file is not committed to Git, making it safe for sensitive information.
Shared variables
Here you can add all the environment variables that are shared across all the apps. This file should be located in the root of the project.
To override these variables in a specific environment, please add them to the specific environment file (e.g. .env.development, .env.production).
# Shared environment variables
# The database URL is used to connect to your database.
DATABASE_URL="postgresql://postgres:postgres@localhost:5432/postgres"
# The name of the product. This is used in various places across the apps.
PRODUCT_NAME="TurboStarter"
# The url of the web app. Used mostly to link between apps.
URL="http://localhost:3000"
...
If you're using Supabase for your database, the Supabase recipe shows the exact DATABASE_URL format and how to set it in your .env.local.
App-specific variables
Here you can add all the environment variables that are specific to the app (e.g. apps/web).
You can also override the shared variables defined in the root .env file.
# App-specific environment variables
# Env variables extracted from shared to be exposed to the client in Next.js app
NEXT_PUBLIC_PRODUCT_NAME="${PRODUCT_NAME}"
NEXT_PUBLIC_URL="${URL}"
NEXT_PUBLIC_DEFAULT_LOCALE="${DEFAULT_LOCALE}"
# Theme mode and color
NEXT_PUBLIC_THEME_MODE="system"
NEXT_PUBLIC_THEME_COLOR="orange"
...
Only environment variables prefixed with NEXT_PUBLIC_ will be injected, so don't use this prefix for environment variables that should be used only in the server-side code.
Read more about Next.js environment variables.
Secret keys
Secret keys and sensitive information are to be never stored in the .env file. Instead, they are stored in the environment variables of the CI/CD system.
Below is some examples of "what is a secret key?" in practice.
# Secret keys
# The database URL is used to connect to your database.
DATABASE_URL="postgresql://postgres:postgres@localhost:5432/postgres"
# Stripe server config - required only if you use Stripe as a billing provider
STRIPE_WEBHOOK_SECRET=""
STRIPE_SECRET_KEY=""
# Lemon Squeezy server config - required only if you use Lemon Squeezy as a billing provider
LEMON_SQUEEZY_API_KEY=""
LEMON_SQUEEZY_SIGNING_SECRET=""
LEMON_SQUEEZY_STORE_ID=""
...