Environment Variables — Complete Guide
Environment Variables — Complete Guide: free step-by-step lesson with examples, common mistakes, and interview tips — part of Next.js Tutorial on Toolliyo Academy.
On this page
Next.js Tutorial (LearnHub) · Lesson 48 of 100
Environment Variables
Beginner ✓ → Intermediate ✓ → Advanced → Professional
Advanced · 3 — Production skills · ~18 min read · Module 5: SEO & Deploy
Introduction
This is advanced material: Environment Variables. It is what teams use on live products. Read the example carefully and try changing one line at a time to see what happens. Environment variables store secrets and config outside source code. In Next.js, NEXT_PUBLIC_ prefix exposes values to the browser; others stay server-only. LearnHub needs DATABASE_URL and OAuth secrets on the server, but only NEXT_PUBLIC_APP_URL should be visible to client code.
An app on your laptop is not finished until students can open it on the internet.
When will you use this?
Use when you are ready to put LearnHub online for users or employers to try.
- Publishing means pushing LearnHub to Vercel, Docker, or Azure so students can access it online.
- CI/CD runs npm test and npm run build automatically on every git push.
Real-world: HDFC-style banking dashboard
The Banking team building HDFC-style banking dashboard uses Environment Variables to apply Environment Variables when building accounts, transfers, and statement views. account holders never see the TypeScript files — they just get a fast, reliable accounts, transfers, and statement views.
Production-style code
# .env.local (never commit)
DATABASE_URL="postgresql://localhost:5432/learnhub"
NEXTAUTH_SECRET="long-random-string"
NEXT_PUBLIC_APP_URL="http://localhost:3000"
// app/api/health/route.ts — server only
export async function GET() {
const hasDb = !!process.env.DATABASE_URL;
return Response.json({ ok: hasDb });
}What happens in production: In HDFC-style banking dashboard, getting Environment Variables right means account holders trust the accounts, transfers, and statement views every day.
Lesson example (start here)
Copy this smaller example first. Once it works, compare it with the real-world code above.
# .env.local (never commit)
DATABASE_URL="postgresql://localhost:5432/learnhub"
NEXTAUTH_SECRET="long-random-string"
NEXT_PUBLIC_APP_URL="http://localhost:3000"
// app/api/health/route.ts — server only
export async function GET() {
const hasDb = !!process.env.DATABASE_URL;
return Response.json({ ok: hasDb });
}Line-by-line walkthrough
| Code | What it means |
|---|---|
# .env.local (never commit) | Comment — notes for humans; the compiler ignores it. |
DATABASE_URL="postgresql://localhost:5432/learnhub" | Part of the Environment Variables example — read it together with the lines before and after. |
NEXTAUTH_SECRET="long-random-string" | Part of the Environment Variables example — read it together with the lines before and after. |
NEXT_PUBLIC_APP_URL="http://localhost:3000" | Part of the Environment Variables example — read it together with the lines before and after. |
// app/api/health/route.ts — server only | Comment — notes for humans; the compiler ignores it. |
export async function GET() { | Exported async function — often a Server Action or API handler. |
const hasDb = !!process.env.DATABASE_URL; | Part of the Environment Variables example — read it together with the lines before and after. |
return Response.json({ ok: hasDb }); | Part of the Environment Variables example — read it together with the lines before and after. |
} | Closes a block started by { above. |
How it works (big picture)
- Server Route Handlers and Server Actions read any env var.
- Client Components only see NEXT_PUBLIC_ vars embedded at build time.
Do this on your computer
- Create .env.local with DATABASE_URL and NEXTAUTH_SECRET.
- Add .env.local to .gitignore.
- Read a server var in a Route Handler.
- Try NEXT_PUBLIC_ in a Client Component label.
- Read the real-world section and name which part of LearnHub uses this topic.
- Run the example locally with npm run dev and confirm the same behavior.
- Change one value in the example (route, text, or course id) and predict what will happen before you save.
Experiments — try changing this
- Change a string or route in the example and save — watch the browser update.
- Break the code on purpose (remove a bracket), read the error overlay, then fix it.
- Change the API URL or course id and see how the page data changes.
- Use npm run dev while editing Environment Variables — the page hot-reloads on save.
Remember
Server secrets stay unprefixed. NEXT_PUBLIC_ is visible in the browser. Use .env.local for local development.
Common questions
Where do Vercel env vars go?
Project Settings → Environment Variables — same names as .env.local.
How long should I spend on Environment Variables?
Until you can explain it in your own words and run the example without looking at the answer. Beginners often need 30–60 minutes per new concept; setup lessons may take one afternoon.
What if I get stuck on Environment Variables?
Re-read the line-by-line walkthrough, check the terminal and browser overlay for errors, and compare your code character-by-character with the example. Search the exact error text — someone else had it too.
Where is Environment Variables used in real jobs?
See the real-world section above — the same pattern appears in LMS, e-commerce, SaaS, and dashboards. Interviewers ask you to explain it using one concrete example.