.env.me

Authorizes you against a project in Dotenv Vault.

Part of πŸ” Layer 2 Protection

The .env.me file uniquely authorizes you to access a project's shared .env file. You can think of it like your unique SSH key at GitHub.

But the .env.me credential has stricter security measures than GitHub's SSH key. The GitHub SSH key allows FULL access to all your repositories. We think this is too dangerous. So we have limited the authorization scope.

The .env.me credential authorizes your machine against a single project. In other words, for each unique project on your machine you will have a unique .env.me credential file. These are generated via the cli (and in some cases the ui) and through a proven authentication method - minimizing the complexity of managing multiple credentials.

This is all by design. This way if an attacker somehow gets access to your .env.me credential (maybe you accidently committed it to source control), they are not getting access to all your secrets. You can then rotate your .env.me credential for that project only, manually rotate or auto-rotate (coming soon) that project's secrets, and be on your way. As a CTO, CSO, or startup founder this helps you mitigate the fallout from a security leak - setting you apart from others. In fact, your security hygiene will be better than most banks and fortune 500 companies in this regard.

Example

Here's an example of what a .env.me file looks like:

DOTENV_ME=me_759f1858d55b2c8cd23efb18612d6a3a



The first thing you might notice is the formatting is the same as a .env file. This is intentional to allow for maximum future interoperability - just like the .env.project file.

The DOTENV_ME key will be the only value this file contains. Keep it safe and out of source control - just like your .env file.

Generating

You can generate a .env.me file at ui.dotenv.org or through the dotenv vault tool. The authorization flow follows a similar pattern to world class authorization flows found in cli tools like Heroku's cli and Vercel's cli. It is both secure and simple.

Ready to get started?

Join millions of developers that already trust and use Dotenv.

No credit card required
Dotenv for
  • Agencies
  • Startups
  • Enterprises
  • Bootstrapped Startups
  • Side Projects
  • Developers

πŸ’› Est. 2013