Best - .env.development.local
.env.development.local file is a specialized environment configuration used primarily in modern web frameworks like React (Create React App) . It is designed to provide local-only overrides for variables specific to the development environment. Core Purpose & Usage Highest Priority Overrides
: This file has the highest priority among development-related files. It will overwrite values defined in .env.development .env.local Developer-Specific Config
: Use it for settings that only apply to your individual machine, such as a local database password or a personal API key that shouldn't be shared with the rest of the team. : Because it contains sensitive local data, it must never be committed to version control (Git). Ensure it is listed in your .gitignore Comparison and Load Order When running your application in development mode ( NODE_ENV=development
), frameworks typically load files in this order, with later files overriding earlier ones: (Default/Fallback) .env.development (Shared dev defaults) .env.local (General local overrides) .env.development.local (Specific local dev overrides) Review Checklist Git Status : Confirm the file is not tracked by Git. Run git check-ignore .env.development.local to verify. Sensitive Data
: Ensure no production secrets or broad team credentials are stored here; keep those in a secure vault or shared .env.development (if non-sensitive). Variable Prefixing
: If using Vite or Create React App, ensure variables meant for the browser are prefixed with REACT_APP_ , respectively. Fallback Sync : Check if .env.example
has been updated with any new keys you added to your local file so other team members know they need to provide their own values.
Scenario A: Personal API Keys
You are working on a team project that uses a third-party API (like Stripe or Google Maps).
- The team shares a "test" key in
.env.development. - You have your own personal test key that is tied to your email account.
- Solution: Put your personal key in
.env.development.local. It works for you, but you don't accidentally overwrite the team's key.
Issue 2: Browser Console shows undefined
Cause: You forgot the framework-specific prefix (like REACT_APP_ or VITE_).
Fix: Rename your variable in the file.
- Wrong:
API_URL=... - Right:
VITE_API_URL=...
Conclusion: The Silent Hero of Local Development
The humble file .env.development.local is easily overlooked, but mastering it transforms a chaotic development setup into a smooth, personalized experience. It respects the delicate balance between shared team configuration and individual developer freedom.
By overriding shared development variables on your local machine, you gain the ability to test with real-world data, debug with maximum verbosity, and connect to local services—all without fear of breaking your colleague's environment or committing a secret to Git.
Remember: commit the shared .env.development, ignore the local .env.development.local, and always respect the load order. Do this, and you will never again have the dreaded "but it works on my machine" argument over environment variables. .env.development.local
Now go forth and configure safely.
The Last Local Environment
Maya stared at the blinking cursor in her terminal. The deadline was seventeen hours away, and the staging environment had just collapsed like a house of cards in a hurricane.
"Again," she muttered.
She had three backup environments. The cloud one was throttled. The CI one was broken by someone’s rushed merge. And the production one — she wasn’t even allowed to think about production.
But there was a fourth.
She navigated to the project root and typed ls -a. There it was, hidden in plain sight:
.env.development.local
She hadn't touched it in months. It was considered dirty — local-only, never committed, full of experimental keys and mock services. A file with no dignity. The technical equivalent of a sticky note on a server rack.
But right now, it was the only thing that worked.
She opened it.
# Emergency local overrides - do not share
API_GATEWAY=http://localhost:8999
MOCK_PAYMENTS=true
FORCE_LEGACY_FALLBACK=1
DEVELOPMENT_MODE_OVERRIDE=ok
She almost laughed. This wasn’t an environment file. It was a confession. Every line was a past mistake, a late-night hack, a promise to fix this later.
But later was now.
She uncommented a line she’d added two years ago:
SECRET_SAUCE_ENABLED=true
Nothing happened.
Then—slowly—the local services started waking up. The mock payments fired. The legacy fallback routed around the dead staging servers. And somewhere in the chaos, her feature began to work.
Maya sat back. The file sat there, quietly doing its job. No CI pipeline. No code review. No cloud. Just her, her laptop, and a .local file that everyone else had forgotten.
She made a mental note: Refactor this mess tomorrow.
But she knew. Tomorrow, she’d still have that file. And she’d quietly love it.
Because sometimes the ugliest solution is the one that saves you at 3 a.m.
And sometimes, .env.development.local is the truest environment of all.
The .env.development.local file is used to store environment-specific overrides and sensitive secrets for your local development environment. It is specifically designed to be ignored by version control (Git) so that personal API keys or local database passwords aren't shared with other developers. Suggested Content for .env.development.local The team shares a "test" key in
Below is a draft structure containing common variables for local development. Replace the placeholder values with your actual local credentials.
# --- DATABASE CONFIGURATION --- # Local database connection (different from staging/production) DATABASE_URL="postgresql://user:password@localhost:5432/my_dev_db" # --- API KEYS & SECRETS --- # Personal API keys for local testing STRIPE_SECRET_KEY="sk_test_51Mz..." AWS_SECRET_ACCESS_KEY="your-local-dev-key" AUTH_SECRET="a-very-long-random-string-for-local-auth" # --- APPLICATION SETTINGS --- # Local API endpoint overrides NEXT_PUBLIC_API_URL="http://localhost:4000/api" DEBUG=true # --- THIRD-PARTY SERVICES --- # Local-only sandbox credentials MAILTRAP_USER="your_mailtrap_user" MAILTRAP_PASS="your_mailtrap_password" Use code with caution. Copied to clipboard Key Rules for This File
Git Security: Ensure this file is listed in your .gitignore. Never commit it to a repository.
Variable Precedence: In frameworks like Next.js or Create React App, variables in .env.development.local will override those in .env.development and .env.
Comments: You can use the # symbol to add notes or categorize your variables for better organization.
Browser Exposure: Remember that variables prefixed with NEXT_PUBLIC_ or REACT_APP_ will be accessible in the browser. Do not put highly sensitive server-side secrets in these specific public variables.
6. Troubleshooting Common Issues
Part 2: The Naming Convention Breakdown
To understand .env.development.local, you must first understand the naming syntax used by almost every major build tool (Webpack, Vite, Next.js, dotenv-flow).
The pattern looks like this:
.env.[mode].[local]
Let's break down each component:
.env: The base file. Loaded in every situation.[mode]: The environment name. Common modes includedevelopment,production,test, orstaging.[local]: An optional flag indicating this file is for your machine only (not committed).
Vite
Vite follows a similar pattern using dotenv. It loads .env.[mode].local for the current mode (e.g., development). However, note that Vite only exposes variables prefixed with VITE_. The file loading order is identical to CRA.