envified 3.3.0 copy "envified: ^3.3.0" to clipboard
envified: ^3.3.0 copied to clipboard

Published 46 hours agoverified publisherappamania.in
SDKFlutter
PlatformAndroidiOS

Metadata

Runtime environment switching for Flutter. Load .env files, switch dev/staging/prod at runtime — no rebuild required.

More...

🌿 envified #

pub package pub points License: MIT Dart CI Sponsor

Stop rebuilding. Start switching.
Runtime environment magic for Flutter apps. No hot reload needed.

The Problem #

You're a Flutter developer. Every time you need to test a different API endpoint—local dev server, staging, production—you rebuild the app. With --dart-define flags. Or .env files baked into the binary. Or multiple entry points. It's tedious. It's error-prone. It breaks flow.

What if you could swap environments in 0.2 seconds? No rebuild. No compilation. Just tap, tap, done.

That's envified.

What is envified? #

envified is a production-grade environment manager for Flutter that lives entirely at runtime.

  • 🚀 Swap dev ↔ prod in 200ms — no rebuild, no hot reload
  • 🔄 Smart Restart Detection — know when dependencies need re-initialization
  • 🔒 Prod lock by default — prevent accidental data disasters
  • 🔐 Sensitive Data Protection — automatic blurring of API keys and tokens
  • 🧪 Override any URL — test against local tunnels, PR branches, anywhere
  • 🛡️ Premium PIN gate — secure the debug panel with modern UI
  • 📋 Full audit trail — visual timeline of every switch and URL change
  • ⚙️ Zero production overhead — stripped out entirely in release builds
  • 🎨 Enterprise UX — premium card-based design with dark mode support

It's not just a config switcher. It's enterprise-grade security meets developer quality of life.

Note

Security Note: While envified encrypts the active configuration state and overrides on the device (via Keychain/Keystore), the base .env files stored in your Flutter assets remain plaintext. Never store high-stakes production secrets directly in .env files; they should be fetched at runtime from a secure vault or used for non-sensitive configuration only.

🚀 What's New in v3.3.0 #

Building on the foundation of v3.2.0, we've introduced a standalone 3-Tier Security CLI engine with zero build_runner and zero third-party compilation dependencies:

Feature What it does
🔐 Package-Independent Obfuscator Own the full build-time compilation pipeline without upstream package dependencies (like envied).
Zero build_runner Dependency Compile your secrets in < 50ms using our direct standalone CLI script. No extra packages or heavy build runner gates needed.
🎲 Random XOR Per Secret Every credential is XOR-encrypted using a completely unique, secure random key list generated at compile time.
📂 Flexible Multi-Path Discovery Auto-discover .env.* assets from custom directory lists and direct file paths (envAssetPaths), fully backwards-compatible under unit tests.
🔄 Cohesive Unmasking UX Inline Confirmation Gate unmasks both key label (e.g., API_KEY) and secret values synchronously, reverting back in perfect unison.
🛑 Build-Time Leak Checker Standalone CLI tool flags a fatal error if keys overlap or contain sensitive keywords (e.g., API_SECRET) inside non-sensitive assets.
🏢 Unified Facade Accessor One simple interface (AppConfig.get(...) and static getters) resolving dynamic assets first, falling back to secure build-time secrets.

🔒 Secure Hybrid Secrets (Zero-Dependency CLI) #

envified now comes with a lightweight, standalone CLI secrets generator that extracts secrets from a gitignored .env.secrets file, compiles them into a highly secure, obfuscated Dart class, and exposes them through a single unified API facade (AppConfig).

This means zero dependency on third-party obfuscation packages and zero dependency on build_runner! You own the entire pipeline.

Obfuscation Mechanism #

Each individual secret is compiled using standard Dart tooling. At compilation time, the standalone CLI:

  1. Generates a secure, random XOR key array of matching byte length via math.Random.secure().
  2. Encrypts the raw secret bytes with the generated key.
  3. Emits both byte lists into a generated, private secrets.g.dart file.
  4. Reconstructs the string transiently in memory on demand via String.fromCharCodes upon retrieval—leaving zero plain-text representation inside compiled assembly binaries.

How to Set Up the Secrets Generator #

1. Setup Local Secrets File

Create a .env.secrets file in the root of your project (already registered in your .gitignore to keep it safe from commits):

# .env.secrets
ENCRYPTION_KEY=my_local_development_aes_key_256
BASIC_AUTH_PASSWORD=local_development_basic_pass_123
APP_AUTH_KEY=local_development_auth_signature_key
API_SECRET=local_development_api_secret_credentials

2. Run the Standalone CLI Secrets Generator

No complex builder classes, no build.yaml triggers. Simply execute the built-in compiler command directly using the Dart SDK:

dart run envified
Optional CLI Arguments:
  • --env=<name>: Target environment (e.g. dart run envified --env=prod matches .env.secrets.prod).
  • --secrets-dir=<path>: Custom location for .env.secrets (defaults to .).
  • --quiet: Mute informative success console logs.

3. Unified Facade Access (AppConfig)

Bootstrap the hybrid architecture in your main.dart:

import 'package:my_app/core/config/app_config.dart';

void main() async {
  WidgetsFlutterBinding.ensureInitialized();

  // Load runtime assets and validate build-time secrets
  await AppConfig.init(Env.dev);

  runApp(const MyApp());
}

Now retrieve any value:

// Check runtime configurations first, and fall back to secure build-time secrets
final baseUrl = AppConfig.get('BASE_URL'); // Resolves from dev asset
final apiSecret = AppConfig.get('API_SECRET'); // Resolves from obfuscated secret
final encryptionKey = AppConfig.encryptionKey; // Convenient typed getter

📦 Features #

Feature What It Does Why You Care
Smart Restart Detects when env changes require restart Prevents connection/state caching bugs
Data Protection Blurs sensitive keys (API_KEY, etc.) Security in screenshots & screen shares
Auto-Discovery Scans assets for .env.* files Zero config; just add a file and it works
Alias Support Handles dev, stag, production, etc. Follows industry standard naming conventions
Tamper Detection SHA-256 hashes .env* files Catch rogue config changes on rooted devices
Access Gate Modern PIN dialog before opening panel QA devices don't leak sensitive switches
URL Validation Live feedback on custom API URLs Prevent typos and invalid endpoint formats
Audit Log Vertical timeline of every switch "Who changed prod at 3pm?"
Status Badge Persistent [DEV] indicator in your app Never forget what env you're testing
Gesture Triggers Tap N times, shake, or swipe edge to open Access the panel your way

Quick Start (3 Steps) #

1️⃣ Install #

dependencies:
  envified: ^3.3.0

Then run:

flutter pub get

No build_runner. No code gen. No magic incantations. Just a package that installs like a normal package. Revolutionary, we know.

2. Create Your Environment Files #

Drop these into assets/env/:

assets/
└── env/
    ├── .env.dev
    ├── .env.staging   ← optional, but you probably want it
    └── .env.prod

Each file is a plain .env file. Nothing exotic:

# .env.dev
BASE_URL=https://dev.api.myapp.com
API_KEY=sk_test_51Mz...

# .env.prod
BASE_URL=https://api.myapp.com
API_KEY=sk_live_92A...

Register in pubspec.yaml:

flutter:
  assets:
    - assets/env/

3️⃣ Initialize #

void main() async {
  WidgetsFlutterBinding.ensureInitialized();

  await EnvConfigService.instance.init(
    defaultEnv: Env.dev,
    // Optional: Customize path list to scan for environment configurations
    envAssetPaths: const ['assets/env/'], 
  );

  // Listen for restart needed (registered once at startup)
  EnvConfigService.instance.restartNeeded.addListener(() {
    debugPrint('Dependencies must re-initialize due to environment changes');
  });

  runApp(const MyApp());
}

Wrap your app with the overlay:

MaterialApp(
  builder: (context, child) => EnvifiedOverlay(
    service: EnvConfigService.instance,
    enabled: kDebugMode,
    gate: EnvGate(pin: '1234'),
    onRestart: () {
      // Trigger a hard restart (e.g. using phoenix or SystemNavigator)
      SystemNavigator.pop();
    },
    child: child!,
  ),
  home: const MyHomePage(),
)

🔒 Production Locking — The Guardian Angel #

Two scenarios where production locking saves you:

Scenario A — Release builds
**Set allowProdSwitch: false and pass enabled: false to EnvifiedOverlay. The panel is gone. The service ignores switch attempts. Your prod build is clean and your users have no idea any of this exists.

Scenario B — The brave "always prod" setup
Maybe you want the panel available in staging but default to Prod and lock it there:

await EnvConfigService.instance.init(
  defaultEnv: Env.prod,
  allowProdSwitch: false, // once you're in Prod, you stay in Prod
);

Now, if anyone (your QA lead, your over-curious intern, your past self at 11 PM) tries to switch away, they get a loud EnvifiedLockException and a UI that has already greyed out the controls. The audit log records the attempt. The blame is documented.

// Catching the exception if you need to handle it gracefully:
try {
  await EnvConfigService.instance.switchTo(Env.dev);
} on EnvifiedLockException catch (e) {
  showDialog(
    context: context,
    builder: (_) => AlertDialog(
      title: const Text('Nice try.'),
      content: Text(e.message),
    ),
  );
}

🔍 Reading Values #

Once initialized, getting a value is a single line:

final svc = EnvConfigService.instance;

// String (use .get)
final apiUrl = svc.get('API_URL');

// Boolean (use .getBool)
final debugMode = svc.getBool('DEBUG', fallback: false);

// Integer (use .getInt)
final timeout = svc.getInt('API_TIMEOUT', fallback: 30);

Troubleshooting #

Q: "No .env.* files discovered" #

Cause: Asset files not registered in pubspec.yaml

Fix:

flutter:
  assets:
    - assets/env/

Run: flutter clean && flutter pub get

Q: Environment switches but API still hits old endpoint #

Cause: HTTP client cached the URL at startup

Fix: Tap "Restart now" in the debug panel to re-initialize or listen to restartNeeded.

Integration with HTTP Clients #

Dio #

import 'package:dio/dio.dart';
import 'package:envified/envified.dart';

final dio = Dio();

Future<void> setupDio() async {
  await EnvConfigService.instance.init();

  // Set initial base URL
  dio.options.baseUrl = EnvConfigService.instance.current.value.baseUrl;

  // Listen for environment changes
  EnvConfigService.instance.current.addListener(() {
    dio.options.baseUrl = EnvConfigService.instance.current.value.baseUrl;
  });
}

API Stability & Versioning #

Semantic Versioning #

This package follows Semantic Versioning:

  • MAJOR (1.0.0) — Breaking changes to public API
  • MINOR (0.1.0) — New features, backwards compatible
  • PATCH (0.0.1) — Bug fixes, backwards compatible

💚 Support & Sponsorship #

envified is free and open source, built with ☕ by Sumit Pal (@appamania).

Tier Link What it buys
☕ A sip of chai ₹20 You liked the package
🍵 A full cup ₹50 It saved you real time
🚀 Keep the lights on ₹100 You ship with it in prod

Buy me a Chai

🤝 Contributing #

We welcome all contributions! Please read CONTRIBUTING.md before opening a PR.

📄 License #

MIT © Appamania

Metadata

1
likes
160
points
758
downloads

Documentation

API reference

Publisher

verified publisherappamania.in

Weekly Downloads

Metadata

Runtime environment switching for Flutter. Load .env files, switch dev/staging/prod at runtime — no rebuild required.

Repository (GitHub)
View/report issues
Contributing

Topics

#environment #configuration #env #debugging #sponsorship

Funding

Consider supporting this project:

paywithchai.in

License

MIT (license)

Dependencies

crypto, flutter, flutter_secure_storage, sensors_plus

More

Packages that depend on envified

Back