Support the ongoing development of Laravel.io →
gautam071
posted 2 years ago
Laravel Encryption

Hi,

I have a website based on Laravel, and I don't want to keep the environmental file on the server. I want to move the environmental file from the production server to somewhere secure.

Any ideas or suggestions are welcomed

Last updated by @gautam071 1 year ago.
0
tvbeek
replied 2 years ago
moderator Solution

Hello @gautam071

It is possible to set the environment variable without the .env file. You need to set environments variable on your server but that depends on your system. It is the same idea as if you run env in your Linux shell.

In PHP you can see the variables with $_ENV (See: https://www.php.net/manual/en/reserved.variables.environment.php ) And if I'm correct Laravel will load the variables for you like the .env file.

On the other hand if someone has access to your production server he/she can not only read the .env file but also probably also access your env variable.

Maybe can encrypting your environment variable be interesting for you: https://laravel.com/docs/9.x/configuration#encrypting-environment-files

gautam071 liked this reply

1
Solution selected by @driesvints
gautam071
replied 1 year ago

Hi @tvbeek

Thanks for sharing!

I will look into the reserved variables in PHP and I will try it out in my system.

tvbeek liked this reply

1

Sign in to participate in this thread!

Eventy

Your banner here too?

Gautam gautam071 Joined 12 Jan 2023

Moderators

We'd like to thank these amazing companies for supporting us

Eventy
Fathom
Forge
Envoyer
Beyond Code
BairesDev
N-iX
Litslink

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

Laravel.io

Forum Articles Pastebin

Socials

X (Twitter) Bluesky Bluesky GitHub

The community

Laravel Laravel Laravel News Laravel News
Laracasts Laracasts Laravel Podcast Laravel Podcast
© 2025 Laravel.io - All rights reserved.
Terms of service Privacy policy Advertise