How to configure environment variables on Vercel
Use the Vercel dashboard (Project Settings > Environment Variables) or CLI (<code>vercel env add KEY value environment</code>) to set variables for Production, Preview, or Development. Prefix client-side vars with <code>NEXT_PUBLIC_</code>, mark sensitive ones with <code>--sensitive</code>, pull locally with <code>vercel env pull .env.local</code>, and always redeploy to apply changes.
Prerequisites
- Vercel account and project linked to a Git repository
- Vercel CLI installed via <code>npm install -g vercel</code> and logged in
- Local <code>.env.local</code> file for development (gitignored)
- Basic familiarity with deployment environments and Git branches
- Project ready for redeployment after changes
Step-by-Step Instructions
Access Environment Variables in Vercel Dashboard
Add New Variable via Dashboard
API_URL, accessible as process.env.API_URL in Node.js), input the Value, select target environment(s) such as Production (main branch), Preview (PRs/branches), or Development (local vercel dev), then click Save. Server-only vars stay secure; public ones need NEXT_PUBLIC_ prefix for browser access.Redeploy Project After Changes
vercel --prod for production. Without redeployment, changes won't take effect in your deployment.Install and Link Vercel CLI
npm install -g vercel
vercel login
vercel linkPull Environment Variables Locally
vercel env pull .env.local to download all project environment variables into a local .env.local file (gitignore this file). This syncs remote vars for local development with vercel dev.Add Variables via CLI
vercel env add DATABASE_URL production (replace with your key and environment: production, preview, or development). For sensitive vars: vercel env add API_SECRET production --sensitive (hides in dashboard). Branch-specific: vercel env add DATABASE_URL preview feature-branch. List with vercel env ls production; remove with vercel env rm DATABASE_URL production.Configure Server-Only vs Public Variables
process.env.DATABASE_URL or process.env.API_SECRET_KEY are secure and not exposed to the browser—set via dashboard/CLI or vercel.json. Public vars exposed to browser must prefix with NEXT_PUBLIC_, e.g., process.env.NEXT_PUBLIC_API_URL, available in client code.Deploy to Specific Environments
vercel deploy --target=staging or vercel --prod for production. Ensure vars target the correct environment to avoid undefined errors in functions.Use vercel.json for Static Config (Optional)
vercel.json:{
"build": {
"env": {
"NEXT_PUBLIC_API_URL": "https://api.example.com"
}
}
}Common Issues & Troubleshooting
`undefined` when accessing <code>process.env.KEY</code> in Serverless Function (e.g., 'Cannot read property of undefined')
Verify variable targets correct environment with <code>vercel env ls</code>, add if missing via <code>vercel env add KEY value production</code>, and redeploy. Check logs for environment mismatch.
Variable not available locally or in preview deployments
Run <code>vercel env pull .env.local</code> for local sync; ensure Preview vars are set for branches/PRs and redeploy via Git push.
Client-side code can't access server-only variable
Prefix public vars with <code>NEXT_PUBLIC_</code> for browser exposure; server secrets like <code>DATABASE_URL</code> stay server-only.
Sensitive flag not hiding value in dashboard
Use <code>--sensitive</code> flag when adding via CLI: <code>vercel env add SECRET production --sensitive</code>; re-add if previously set without it.
Large JSON files exceed 4KB limit
Encrypt JSON and set as single env var, or extract key values (e.g., <code>client_email</code>, <code>private_key</code>) as separate vars per Vercel docs.