The latest articles on DEV Community by Luke Harris (@luk707). https://dev.to/luk707 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F25164%2Fb657c220-d892-46f2-b40a-6be5c869a8f6.jpg https://dev.to/luk707 en Luke Harris Fri, 15 Sep 2017 12:55:20 +0000 https://dev.to/luk707/managing-dotenv-files-in-git-repositories https://dev.to/luk707/managing-dotenv-files-in-git-repositories <p>Sometimes your project needs access to sensitive information like an access token or database password. Maybe your project needs some configuration like a hostname or a port to run on.</p> <p>If so then it is likely that you are at least aware of the dotenv file. If not see this great medium article on <a href="https://medium.com/@rafaelvidaurre/managing-environment-variables-in-node-js-2cb45a55195f" rel="noopener noreferrer">Managing environment variables in Node.js – Rafael Vidaurre – Medium</a>.</p> <p>The big problem with storing sensitive information inside a git repository is that you could push and leak these keys (more so for open source projects). Because of this most gitignore file templates include all files with <code>.env</code> extensions as a precaution.</p> <p>Now security is out of the way, what about convenience. When you first clone a project that depends on a <code>.env</code> file you have to A) know the environment variables that the project expects or B) copy from an env example file or readme and fill in the contents manually.</p> <p>This could be much more streamlined which is why I have published an npm package <a href="https://www.npmjs.com/package/envup" rel="noopener noreferrer">envup</a>.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzw4jebsuzdsmhucrg6kc.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzw4jebsuzdsmhucrg6kc.png" alt="Example" width="800" height="544"></a></p> <p>This tool allows you to create an <code>env.json</code> file in the root of your project containing the contents of your environment file and then configure it with one command.</p> <p>This allows you to keep your env file ignored and also make it easy for others to configure their environment too!</p> discuss node dotenv