Skip to content

du5rte/secrets

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

9 Commits
.github/workflows
.github/workflows
Β 
Β 
babel-plugin-secrets
babel-plugin-secrets
Β 
Β 
src
src
Β 
Β 
.editorconfig
.editorconfig
Β 
Β 
.env
.env
Β 
Β 
.env.js
.env.js
Β 
Β 
.env.json
.env.json
Β 
Β 
.gitignore
.gitignore
Β 
Β 
.invalid.env
.invalid.env
Β 
Β 
.npmignore
.npmignore
Β 
Β 
.secrets
.secrets
Β 
Β 
.travis.yml
.travis.yml
Β 
Β 
CONTRIBUTING.md
CONTRIBUTING.md
Β 
Β 
LICENSE
LICENSE
Β 
Β 
README.md
README.md
Β 
Β 
key.svg
key.svg
Β 
Β 
package.json
package.json
Β 
Β 
yarn.lock
yarn.lock
Β 
Β 

Repository files navigation

Key

GitHub Actions Test Status

Secrets

Secret handler for Node.js πŸ—οΈ

Secret is a zero-dependency package to handle secrets in Node.js from a .env file into process.env. Inspired by dotenv.

Install

yarn add secrets

Usage

Create a .env file in the root directory of your project. It supports 3 types of .env files .env.json and .env.js

.env supports entries in the form of NAME=VALUE.

NODE_ENV=development PORT=3000 SECRET=my_super_secret

.env.json supports JSON

{ "NODE_ENV": "development", "PORT": 3000, "SECRET": "my_super_secret" }

.env.js supports JavaScript

module.exports = { NODE_ENV: 'development', PORT: 3000, SECRET: 'my_super_secret', }

That's it. As early as possible in your application, require secrets. process.env should have the keys and values you defined in your .env file.

// setups entries in process.env import 'secrets' // or require('secrets') ... // which can be access anywhere in your code app.listen(process.env.PORT, function () { console.log('Server running on localhost:' + process.env.PORT) })

Verify environment variables are loaded in process.env

secret.verify('PORT', 'SECRET') // throw error if it's missing

Babel Plugin

module.exports = { presets: ['module:metro-react-native-babel-preset'], plugins: ['secrets/babel-plugin-secrets'], }

Github Action

To create secret .env environment files on demands on your github actions checkout du5rte/create-secret-file

Location

Secrets should be place in the root of the project but it searches for .env files the same way node searches for node_modules folders, the closer to the root the higher the priority.

/Users/user/myProjects/myAwesomeProject/.env /Users/user/myProjects/.env /Users/user/.env /Users/.env

Rules

The parsing engine currently supports the following rules:

  • BASIC=basic becomes {BASIC: 'basic'}
  • empty lines are skipped
  • lines beginning with # are treated as comments
  • empty values become empty strings (EMPTY= becomes {EMPTY: ''})
  • single and double quoted values are escaped (SINGLE_QUOTE='quoted' becomes {SINGLE_QUOTE: "quoted"})
  • new lines are expanded if in double quotes (MULTILINE="new\nline" becomes
{MULTILINE: 'new line'}
  • inner quotes are maintained (think JSON) (JSON={"foo": "bar"} becomes {JSON:"{\"foo\": \"bar\"}")

FAQ

Should I commit my secrets files?

No! πŸ™…β€β™‚οΈ, do not commit your .env files! Adding a .gitignore file to your repository should be your first line of defense against accidentally leaking any secrets. read more

Contributing

See CONTRIBUTING.md

License

See LICENSE

About

Secrets handler for Node.js πŸ—οΈ

Topics

dotenv secrets environment-variables environment-vars environment-configuration secrets-management dotenv-parser dotenv-loader secrets-manager secrets-files

Resources

Readme

Contributing

Contributing
Activity

Stars

5 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 2

Enhanced validation Latest
Dec 1, 2020
+ 1 release

Packages

 
 
 

Contributors

Languages