Separate environment configs (#6597)

* Separate environment configs

* wip

* wip

* test

* plugins

* test

* test

* .sequelizerc, unfortunately can't go through /utils/environment due to not supporting TS

* docker-compose -> docker compose

* fix: .local wipes .development

* Add custom validation message for invalid SECRET_KEY (often confused)

server/config/database.json

@@ -4,7 +4,7 @@
     "dialect": "postgres"
   },
   "test": {
-    "use_env_variable": "DATABASE_URL_TEST",
+    "use_env_variable": "DATABASE_URL",
     "dialect": "postgres"
   },
   "production": {
@@ -20,4 +20,4 @@
     "use_env_variable": "DATABASE_URL",
     "dialect": "postgres"
   }
-}
+}

server/env.ts

@@ -1,10 +1,5 @@
-/* eslint-disable @typescript-eslint/no-var-requires */
-
-// Load the process environment variables
-require("dotenv").config({
-  silent: true,
-});
-
+// eslint-disable-next-line import/order
+import environment from "./utils/environment";
 import os from "os";
 import {
   validate,
@@ -16,7 +11,6 @@ import {
   IsIn,
   IsEmail,
   IsBoolean,
-  MaxLength,
 } from "class-validator";
 import uniq from "lodash/uniq";
 import { languages } from "@shared/i18n";
@@ -25,7 +19,7 @@ import Deprecated from "./models/decorators/Deprecated";
 import { getArg } from "./utils/args";
 
 export class Environment {
-  private validationPromise;
+  protected validationPromise;
 
   constructor() {
     this.validationPromise = validate(this);
@@ -44,21 +38,23 @@ export class Environment {
    * The current environment name.
    */
   @IsIn(["development", "production", "staging", "test"])
-  public ENVIRONMENT = process.env.NODE_ENV ?? "production";
+  public ENVIRONMENT = environment.NODE_ENV ?? "production";
 
   /**
    * The secret key is used for encrypting data. Do not change this value once
    * set or your users will be unable to login.
    */
-  @IsByteLength(32, 64)
-  public SECRET_KEY = process.env.SECRET_KEY ?? "";
+  @IsByteLength(32, 64, {
+    message: `The SECRET_KEY environment variable is invalid (Use \`openssl rand -hex 32\` to generate a value).`,
+  })
+  public SECRET_KEY = environment.SECRET_KEY ?? "";
 
   /**
    * The secret that should be passed to the cron utility endpoint to enable
    * triggering of scheduled tasks.
    */
   @IsNotEmpty()
-  public UTILS_SECRET = process.env.UTILS_SECRET ?? "";
+  public UTILS_SECRET = environment.UTILS_SECRET ?? "";
 
   /**
    * The url of the database.
@@ -69,7 +65,7 @@ export class Environment {
     allow_underscores: true,
     protocols: ["postgres", "postgresql"],
   })
-  public DATABASE_URL = process.env.DATABASE_URL ?? "";
+  public DATABASE_URL = environment.DATABASE_URL ?? "";
 
   /**
    * The url of the database pool.
@@ -81,7 +77,7 @@ export class Environment {
     protocols: ["postgres", "postgresql"],
   })
   public DATABASE_CONNECTION_POOL_URL = this.toOptionalString(
-    process.env.DATABASE_CONNECTION_POOL_URL
+    environment.DATABASE_CONNECTION_POOL_URL
   );
 
   /**
@@ -90,7 +86,7 @@ export class Environment {
   @IsNumber()
   @IsOptional()
   public DATABASE_CONNECTION_POOL_MIN = this.toOptionalNumber(
-    process.env.DATABASE_CONNECTION_POOL_MIN
+    environment.DATABASE_CONNECTION_POOL_MIN
   );
 
   /**
@@ -99,7 +95,7 @@ export class Environment {
   @IsNumber()
   @IsOptional()
   public DATABASE_CONNECTION_POOL_MAX = this.toOptionalNumber(
-    process.env.DATABASE_CONNECTION_POOL_MAX
+    environment.DATABASE_CONNECTION_POOL_MAX
   );
 
   /**
@@ -110,7 +106,7 @@ export class Environment {
    */
   @IsIn(["disable", "allow", "require", "prefer", "verify-ca", "verify-full"])
   @IsOptional()
-  public PGSSLMODE = process.env.PGSSLMODE;
+  public PGSSLMODE = environment.PGSSLMODE;
 
   /**
    * The url of redis. Note that redis does not have a database after the port.
@@ -118,7 +114,7 @@ export class Environment {
    * base64-encoded configuration.
    */
   @IsNotEmpty()
-  public REDIS_URL = process.env.REDIS_URL;
+  public REDIS_URL = environment.REDIS_URL;
 
   /**
    * The fully qualified, external facing domain name of the server.
@@ -129,7 +125,7 @@ export class Environment {
     require_protocol: true,
     require_tld: false,
   })
-  public URL = process.env.URL || "";
+  public URL = environment.URL || "";
 
   /**
    * If using a Cloudfront/Cloudflare distribution or similar it can be set below.
@@ -143,7 +139,7 @@ export class Environment {
     require_protocol: true,
     require_tld: false,
   })
-  public CDN_URL = this.toOptionalString(process.env.CDN_URL);
+  public CDN_URL = this.toOptionalString(environment.CDN_URL);
 
   /**
    * The fully qualified, external facing domain name of the collaboration
@@ -156,7 +152,7 @@ export class Environment {
   })
   @IsOptional()
   public COLLABORATION_URL = this.toOptionalString(
-    process.env.COLLABORATION_URL
+    environment.COLLABORATION_URL
   );
 
   /**
@@ -166,7 +162,7 @@ export class Environment {
   @IsOptional()
   @IsNumber()
   public COLLABORATION_MAX_CLIENTS_PER_DOCUMENT = parseInt(
-    process.env.COLLABORATION_MAX_CLIENTS_PER_DOCUMENT || "100",
+    environment.COLLABORATION_MAX_CLIENTS_PER_DOCUMENT || "100",
     10
   );
 
@@ -175,18 +171,18 @@ export class Environment {
    */
   @IsNumber()
   @IsOptional()
-  public PORT = this.toOptionalNumber(process.env.PORT) ?? 3000;
+  public PORT = this.toOptionalNumber(environment.PORT) ?? 3000;
 
   /**
    * Optional extra debugging. Comma separated
    */
-  public DEBUG = process.env.DEBUG || "";
+  public DEBUG = environment.DEBUG || "";
 
   /**
    * Configure lowest severity level for server logs
    */
   @IsIn(["error", "warn", "info", "http", "verbose", "debug", "silly"])
-  public LOG_LEVEL = process.env.LOG_LEVEL || "info";
+  public LOG_LEVEL = environment.LOG_LEVEL || "info";
 
   /**
    * How many processes should be spawned. As a reasonable rule divide your
@@ -194,7 +190,7 @@ export class Environment {
    */
   @IsNumber()
   @IsOptional()
-  public WEB_CONCURRENCY = this.toOptionalNumber(process.env.WEB_CONCURRENCY);
+  public WEB_CONCURRENCY = this.toOptionalNumber(environment.WEB_CONCURRENCY);
 
   /**
    * How long a request should be processed before giving up and returning an
@@ -203,28 +199,28 @@ export class Environment {
   @IsNumber()
   @IsOptional()
   public REQUEST_TIMEOUT =
-    this.toOptionalNumber(process.env.REQUEST_TIMEOUT) ?? 10 * 1000;
+    this.toOptionalNumber(environment.REQUEST_TIMEOUT) ?? 10 * 1000;
 
   /**
-   * Base64 encoded private key if Outline is to perform SSL termination.
+   * Base64 encoded protected key if Outline is to perform SSL termination.
    */
   @IsOptional()
   @CannotUseWithout("SSL_CERT")
-  public SSL_KEY = this.toOptionalString(process.env.SSL_KEY);
+  public SSL_KEY = this.toOptionalString(environment.SSL_KEY);
 
   /**
    * Base64 encoded public certificate if Outline is to perform SSL termination.
    */
   @IsOptional()
   @CannotUseWithout("SSL_KEY")
-  public SSL_CERT = this.toOptionalString(process.env.SSL_CERT);
+  public SSL_CERT = this.toOptionalString(environment.SSL_CERT);
 
   /**
    * The default interface language. See translate.getoutline.com for a list of
    * available language codes and their percentage translated.
    */
   @IsIn(languages)
-  public DEFAULT_LANGUAGE = process.env.DEFAULT_LANGUAGE ?? "en_US";
+  public DEFAULT_LANGUAGE = environment.DEFAULT_LANGUAGE ?? "en_US";
 
   /**
    * A comma list of which services should be enabled on this instance – defaults to all.
@@ -235,7 +231,7 @@ export class Environment {
   public SERVICES = uniq(
     (
       getArg("services") ??
-      process.env.SERVICES ??
+      environment.SERVICES ??
       "collaboration,websockets,worker,web"
     )
       .split(",")
@@ -248,7 +244,7 @@ export class Environment {
    * loadbalancer.
    */
   @IsBoolean()
-  public FORCE_HTTPS = this.toBoolean(process.env.FORCE_HTTPS ?? "true");
+  public FORCE_HTTPS = this.toBoolean(environment.FORCE_HTTPS ?? "true");
 
   /**
    * Should the installation send anonymized statistics to the maintainers.
@@ -256,51 +252,51 @@ export class Environment {
    */
   @IsBoolean()
   public TELEMETRY = this.toBoolean(
-    process.env.ENABLE_UPDATES ?? process.env.TELEMETRY ?? "true"
+    environment.ENABLE_UPDATES ?? environment.TELEMETRY ?? "true"
   );
 
   /**
    * An optional comma separated list of allowed domains.
    */
   public ALLOWED_DOMAINS =
-    process.env.ALLOWED_DOMAINS ?? process.env.GOOGLE_ALLOWED_DOMAINS;
+    environment.ALLOWED_DOMAINS ?? environment.GOOGLE_ALLOWED_DOMAINS;
 
   // Third-party services
 
   /**
    * The host of your SMTP server for enabling emails.
    */
-  public SMTP_HOST = process.env.SMTP_HOST;
+  public SMTP_HOST = environment.SMTP_HOST;
 
   /**
    * Optional hostname of the client, used for identifying to the server
    * defaults to hostname of the machine.
    */
-  public SMTP_NAME = process.env.SMTP_NAME;
+  public SMTP_NAME = environment.SMTP_NAME;
 
   /**
    * The port of your SMTP server.
    */
   @IsNumber()
   @IsOptional()
-  public SMTP_PORT = this.toOptionalNumber(process.env.SMTP_PORT);
+  public SMTP_PORT = this.toOptionalNumber(environment.SMTP_PORT);
 
   /**
    * The username of your SMTP server, if any.
    */
-  public SMTP_USERNAME = process.env.SMTP_USERNAME;
+  public SMTP_USERNAME = environment.SMTP_USERNAME;
 
   /**
    * The password for the SMTP username, if any.
    */
-  public SMTP_PASSWORD = process.env.SMTP_PASSWORD;
+  public SMTP_PASSWORD = environment.SMTP_PASSWORD;
 
   /**
    * The email address from which emails are sent.
    */
   @IsEmail({ allow_display_name: true, allow_ip_domain: true })
   @IsOptional()
-  public SMTP_FROM_EMAIL = this.toOptionalString(process.env.SMTP_FROM_EMAIL);
+  public SMTP_FROM_EMAIL = this.toOptionalString(environment.SMTP_FROM_EMAIL);
 
   /**
    * The reply-to address for emails sent from Outline. If unset the from
@@ -308,12 +304,12 @@ export class Environment {
    */
   @IsEmail({ allow_display_name: true, allow_ip_domain: true })
   @IsOptional()
-  public SMTP_REPLY_EMAIL = this.toOptionalString(process.env.SMTP_REPLY_EMAIL);
+  public SMTP_REPLY_EMAIL = this.toOptionalString(environment.SMTP_REPLY_EMAIL);
 
   /**
    * Override the cipher used for SMTP SSL connections.
    */
-  public SMTP_TLS_CIPHERS = this.toOptionalString(process.env.SMTP_TLS_CIPHERS);
+  public SMTP_TLS_CIPHERS = this.toOptionalString(environment.SMTP_TLS_CIPHERS);
 
   /**
    * If true (the default) the connection will use TLS when connecting to server.
@@ -322,182 +318,56 @@ export class Environment {
    * Setting secure to false therefore does not mean that you would not use an
    * encrypted connection.
    */
-  public SMTP_SECURE = this.toBoolean(process.env.SMTP_SECURE ?? "true");
+  public SMTP_SECURE = this.toBoolean(environment.SMTP_SECURE ?? "true");
 
   /**
    * Sentry DSN for capturing errors and frontend performance.
    */
   @IsUrl()
   @IsOptional()
-  public SENTRY_DSN = this.toOptionalString(process.env.SENTRY_DSN);
+  public SENTRY_DSN = this.toOptionalString(environment.SENTRY_DSN);
 
   /**
    * Sentry tunnel URL for bypassing ad blockers
    */
   @IsUrl()
   @IsOptional()
-  public SENTRY_TUNNEL = this.toOptionalString(process.env.SENTRY_TUNNEL);
+  public SENTRY_TUNNEL = this.toOptionalString(environment.SENTRY_TUNNEL);
 
   /**
    * A release SHA or other identifier for Sentry.
    */
-  public RELEASE = this.toOptionalString(process.env.RELEASE);
+  public RELEASE = this.toOptionalString(environment.RELEASE);
 
   /**
    * A Google Analytics tracking ID, supports v3 or v4 properties.
    */
   @IsOptional()
   public GOOGLE_ANALYTICS_ID = this.toOptionalString(
-    process.env.GOOGLE_ANALYTICS_ID
+    environment.GOOGLE_ANALYTICS_ID
   );
 
   /**
    * A DataDog API key for tracking server metrics.
    */
-  public DD_API_KEY = process.env.DD_API_KEY;
+  public DD_API_KEY = environment.DD_API_KEY;
 
   /**
    * The name of the service to use in DataDog.
    */
-  public DD_SERVICE = process.env.DD_SERVICE ?? "outline";
-
-  /**
-   * Google OAuth2 client credentials. To enable authentication with Google.
-   */
-  @IsOptional()
-  @CannotUseWithout("GOOGLE_CLIENT_SECRET")
-  public GOOGLE_CLIENT_ID = this.toOptionalString(process.env.GOOGLE_CLIENT_ID);
+  public DD_SERVICE = environment.DD_SERVICE ?? "outline";
 
   @IsOptional()
-  @CannotUseWithout("GOOGLE_CLIENT_ID")
-  public GOOGLE_CLIENT_SECRET = this.toOptionalString(
-    process.env.GOOGLE_CLIENT_SECRET
-  );
-
-  /**
-   * Slack OAuth2 client credentials. To enable authentication with Slack.
-   */
-  @IsOptional()
-  @Deprecated("Use SLACK_CLIENT_SECRET instead")
-  public SLACK_SECRET = this.toOptionalString(process.env.SLACK_SECRET);
-
-  @IsOptional()
-  @Deprecated("Use SLACK_CLIENT_ID instead")
-  public SLACK_KEY = this.toOptionalString(process.env.SLACK_KEY);
-
-  @IsOptional()
-  @CannotUseWithout("SLACK_CLIENT_SECRET")
   public SLACK_CLIENT_ID = this.toOptionalString(
-    process.env.SLACK_CLIENT_ID ?? process.env.SLACK_KEY
-  );
-
-  @IsOptional()
-  @CannotUseWithout("SLACK_CLIENT_ID")
-  public SLACK_CLIENT_SECRET = this.toOptionalString(
-    process.env.SLACK_CLIENT_SECRET ?? process.env.SLACK_SECRET
+    environment.SLACK_CLIENT_ID ?? environment.SLACK_KEY
   );
 
   /**
-   * This is used to verify webhook requests received from Slack.
-   */
-  @IsOptional()
-  public SLACK_VERIFICATION_TOKEN = this.toOptionalString(
-    process.env.SLACK_VERIFICATION_TOKEN
-  );
-
-  /**
-   * This is injected into the slack-app-id header meta tag if provided.
+   * Injected into the `slack-app-id` header meta tag if provided.
    */
   @IsOptional()
   @CannotUseWithout("SLACK_CLIENT_ID")
-  public SLACK_APP_ID = this.toOptionalString(process.env.SLACK_APP_ID);
-
-  /**
-   * If enabled a "Post to Channel" button will be added to search result
-   * messages inside of Slack. This also requires setup in Slack UI.
-   */
-  @IsOptional()
-  @IsBoolean()
-  public SLACK_MESSAGE_ACTIONS = this.toBoolean(
-    process.env.SLACK_MESSAGE_ACTIONS ?? "false"
-  );
-
-  /**
-   * Azure OAuth2 client credentials. To enable authentication with Azure.
-   */
-  @IsOptional()
-  @CannotUseWithout("AZURE_CLIENT_SECRET")
-  public AZURE_CLIENT_ID = this.toOptionalString(process.env.AZURE_CLIENT_ID);
-
-  @IsOptional()
-  @CannotUseWithout("AZURE_CLIENT_ID")
-  public AZURE_CLIENT_SECRET = this.toOptionalString(
-    process.env.AZURE_CLIENT_SECRET
-  );
-
-  @IsOptional()
-  @CannotUseWithout("AZURE_CLIENT_ID")
-  public AZURE_RESOURCE_APP_ID = this.toOptionalString(
-    process.env.AZURE_RESOURCE_APP_ID
-  );
-
-  /**
-   * OIDC client credentials. To enable authentication with any
-   * compatible provider.
-   */
-  @IsOptional()
-  @CannotUseWithout("OIDC_CLIENT_SECRET")
-  @CannotUseWithout("OIDC_AUTH_URI")
-  @CannotUseWithout("OIDC_TOKEN_URI")
-  @CannotUseWithout("OIDC_USERINFO_URI")
-  @CannotUseWithout("OIDC_DISPLAY_NAME")
-  public OIDC_CLIENT_ID = this.toOptionalString(process.env.OIDC_CLIENT_ID);
-
-  @IsOptional()
-  @CannotUseWithout("OIDC_CLIENT_ID")
-  public OIDC_CLIENT_SECRET = this.toOptionalString(
-    process.env.OIDC_CLIENT_SECRET
-  );
-
-  /**
-   * The name of the OIDC provider, eg "GitLab" – this will be displayed on the
-   * sign-in button and other places in the UI. The default value is:
-   * "OpenID Connect".
-   */
-  @MaxLength(50)
-  public OIDC_DISPLAY_NAME = process.env.OIDC_DISPLAY_NAME ?? "OpenID Connect";
-
-  /**
-   * The OIDC authorization endpoint.
-   */
-  @IsOptional()
-  @IsUrl({
-    require_tld: false,
-    allow_underscores: true,
-  })
-  public OIDC_AUTH_URI = this.toOptionalString(process.env.OIDC_AUTH_URI);
-
-  /**
-   * The OIDC token endpoint.
-   */
-  @IsOptional()
-  @IsUrl({
-    require_tld: false,
-    allow_underscores: true,
-  })
-  public OIDC_TOKEN_URI = this.toOptionalString(process.env.OIDC_TOKEN_URI);
-
-  /**
-   * The OIDC userinfo endpoint.
-   */
-  @IsOptional()
-  @IsUrl({
-    require_tld: false,
-    allow_underscores: true,
-  })
-  public OIDC_USERINFO_URI = this.toOptionalString(
-    process.env.OIDC_USERINFO_URI
-  );
+  public SLACK_APP_ID = this.toOptionalString(environment.SLACK_APP_ID);
 
   /**
    * Disable autoredirect to the OIDC login page if there is only one
@@ -506,7 +376,7 @@ export class Environment {
   @IsOptional()
   @IsBoolean()
   public OIDC_DISABLE_REDIRECT = this.toOptionalBoolean(
-    process.env.OIDC_DISABLE_REDIRECT
+    environment.OIDC_DISABLE_REDIRECT
   );
 
   /**
@@ -517,20 +387,7 @@ export class Environment {
     require_tld: false,
     allow_underscores: true,
   })
-  public OIDC_LOGOUT_URI = this.toOptionalString(process.env.OIDC_LOGOUT_URI);
-
-  /**
-   * The OIDC profile field to use as the username. The default value is
-   * "preferred_username".
-   */
-  public OIDC_USERNAME_CLAIM =
-    process.env.OIDC_USERNAME_CLAIM ?? "preferred_username";
-
-  /**
-   * A space separated list of OIDC scopes to request. Defaults to "openid
-   * profile email".
-   */
-  public OIDC_SCOPES = process.env.OIDC_SCOPES ?? "openid profile email";
+  public OIDC_LOGOUT_URI = this.toOptionalString(environment.OIDC_LOGOUT_URI);
 
   /**
    * A string representing the version of the software.
@@ -539,7 +396,7 @@ export class Environment {
    * SOURCE_VERSION is used by Heroku
    */
   public VERSION = this.toOptionalString(
-    process.env.SOURCE_COMMIT || process.env.SOURCE_VERSION
+    environment.SOURCE_COMMIT || environment.SOURCE_VERSION
   );
 
   /**
@@ -548,7 +405,7 @@ export class Environment {
   @IsOptional()
   @IsBoolean()
   public RATE_LIMITER_ENABLED = this.toBoolean(
-    process.env.RATE_LIMITER_ENABLED ?? "false"
+    environment.RATE_LIMITER_ENABLED ?? "false"
   );
 
   /**
@@ -559,7 +416,7 @@ export class Environment {
   @IsNumber()
   @CannotUseWithout("RATE_LIMITER_ENABLED")
   public RATE_LIMITER_REQUESTS =
-    this.toOptionalNumber(process.env.RATE_LIMITER_REQUESTS) ?? 1000;
+    this.toOptionalNumber(environment.RATE_LIMITER_REQUESTS) ?? 1000;
 
   /**
    * Set max allowed realtime connections before throttling. Defaults to 50
@@ -568,7 +425,7 @@ export class Environment {
   @IsOptional()
   @IsNumber()
   public RATE_LIMITER_COLLABORATION_REQUESTS =
-    this.toOptionalNumber(process.env.RATE_LIMITER_COLLABORATION_REQUESTS) ??
+    this.toOptionalNumber(environment.RATE_LIMITER_COLLABORATION_REQUESTS) ??
     50;
 
   /**
@@ -579,7 +436,7 @@ export class Environment {
   @IsNumber()
   @CannotUseWithout("RATE_LIMITER_ENABLED")
   public RATE_LIMITER_DURATION_WINDOW =
-    this.toOptionalNumber(process.env.RATE_LIMITER_DURATION_WINDOW) ?? 60;
+    this.toOptionalNumber(environment.RATE_LIMITER_DURATION_WINDOW) ?? 60;
 
   /**
    * Set max allowed upload size for file attachments.
@@ -589,7 +446,7 @@ export class Environment {
   @IsNumber()
   @Deprecated("Use FILE_STORAGE_UPLOAD_MAX_SIZE instead")
   public AWS_S3_UPLOAD_MAX_SIZE = this.toOptionalNumber(
-    process.env.AWS_S3_UPLOAD_MAX_SIZE
+    environment.AWS_S3_UPLOAD_MAX_SIZE
   );
 
   /**
@@ -597,7 +454,7 @@ export class Environment {
    */
   @IsOptional()
   public AWS_ACCESS_KEY_ID = this.toOptionalString(
-    process.env.AWS_ACCESS_KEY_ID
+    environment.AWS_ACCESS_KEY_ID
   );
 
   /**
@@ -606,35 +463,35 @@ export class Environment {
   @IsOptional()
   @CannotUseWithout("AWS_ACCESS_KEY_ID")
   public AWS_SECRET_ACCESS_KEY = this.toOptionalString(
-    process.env.AWS_SECRET_ACCESS_KEY
+    environment.AWS_SECRET_ACCESS_KEY
   );
 
   /**
    * The name of the AWS S3 region to use.
    */
   @IsOptional()
-  public AWS_REGION = this.toOptionalString(process.env.AWS_REGION);
+  public AWS_REGION = this.toOptionalString(environment.AWS_REGION);
 
   /**
    * Optional AWS S3 endpoint URL for file attachments.
    */
   @IsOptional()
   public AWS_S3_ACCELERATE_URL = this.toOptionalString(
-    process.env.AWS_S3_ACCELERATE_URL
+    environment.AWS_S3_ACCELERATE_URL
   );
 
   /**
    * Optional AWS S3 endpoint URL for file attachments.
    */
   @IsOptional()
-  public AWS_S3_UPLOAD_BUCKET_URL = process.env.AWS_S3_UPLOAD_BUCKET_URL ?? "";
+  public AWS_S3_UPLOAD_BUCKET_URL = environment.AWS_S3_UPLOAD_BUCKET_URL ?? "";
 
   /**
    * The bucket name to store file attachments in.
    */
   @IsOptional()
   public AWS_S3_UPLOAD_BUCKET_NAME = this.toOptionalString(
-    process.env.AWS_S3_UPLOAD_BUCKET_NAME
+    environment.AWS_S3_UPLOAD_BUCKET_NAME
   );
 
   /**
@@ -643,26 +500,26 @@ export class Environment {
    */
   @IsOptional()
   public AWS_S3_FORCE_PATH_STYLE = this.toBoolean(
-    process.env.AWS_S3_FORCE_PATH_STYLE ?? "true"
+    environment.AWS_S3_FORCE_PATH_STYLE ?? "true"
   );
 
   /**
    * Set default AWS S3 ACL for file attachments.
    */
   @IsOptional()
-  public AWS_S3_ACL = process.env.AWS_S3_ACL ?? "private";
+  public AWS_S3_ACL = environment.AWS_S3_ACL ?? "private";
 
   /**
    * Which file storage system to use
    */
   @IsIn(["local", "s3"])
-  public FILE_STORAGE = this.toOptionalString(process.env.FILE_STORAGE) ?? "s3";
+  public FILE_STORAGE = this.toOptionalString(environment.FILE_STORAGE) ?? "s3";
 
   /**
    * Set default root dir path for local file storage
    */
   public FILE_STORAGE_LOCAL_ROOT_DIR =
-    this.toOptionalString(process.env.FILE_STORAGE_LOCAL_ROOT_DIR) ??
+    this.toOptionalString(environment.FILE_STORAGE_LOCAL_ROOT_DIR) ??
     "/var/lib/outline/data";
 
   /**
@@ -670,8 +527,8 @@ export class Environment {
    */
   @IsNumber()
   public FILE_STORAGE_UPLOAD_MAX_SIZE =
-    this.toOptionalNumber(process.env.FILE_STORAGE_UPLOAD_MAX_SIZE) ??
-    this.toOptionalNumber(process.env.AWS_S3_UPLOAD_MAX_SIZE) ??
+    this.toOptionalNumber(environment.FILE_STORAGE_UPLOAD_MAX_SIZE) ??
+    this.toOptionalNumber(environment.AWS_S3_UPLOAD_MAX_SIZE) ??
     1000000;
 
   /**
@@ -679,9 +536,9 @@ export class Environment {
    */
   @IsNumber()
   public FILE_STORAGE_IMPORT_MAX_SIZE =
-    this.toOptionalNumber(process.env.FILE_STORAGE_IMPORT_MAX_SIZE) ??
-    this.toOptionalNumber(process.env.MAXIMUM_IMPORT_SIZE) ??
-    this.toOptionalNumber(process.env.FILE_STORAGE_UPLOAD_MAX_SIZE) ??
+    this.toOptionalNumber(environment.FILE_STORAGE_IMPORT_MAX_SIZE) ??
+    this.toOptionalNumber(environment.MAXIMUM_IMPORT_SIZE) ??
+    this.toOptionalNumber(environment.FILE_STORAGE_UPLOAD_MAX_SIZE) ??
     1000000;
 
   /**
@@ -689,9 +546,9 @@ export class Environment {
    */
   @IsNumber()
   public FILE_STORAGE_WORKSPACE_IMPORT_MAX_SIZE =
-    this.toOptionalNumber(process.env.FILE_STORAGE_WORKSPACE_IMPORT_MAX_SIZE) ??
-    this.toOptionalNumber(process.env.MAXIMUM_IMPORT_SIZE) ??
-    this.toOptionalNumber(process.env.FILE_STORAGE_UPLOAD_MAX_SIZE) ??
+    this.toOptionalNumber(environment.FILE_STORAGE_WORKSPACE_IMPORT_MAX_SIZE) ??
+    this.toOptionalNumber(environment.MAXIMUM_IMPORT_SIZE) ??
+    this.toOptionalNumber(environment.FILE_STORAGE_UPLOAD_MAX_SIZE) ??
     1000000;
 
   /**
@@ -705,7 +562,7 @@ export class Environment {
   @IsNumber()
   @Deprecated("Use FILE_STORAGE_IMPORT_MAX_SIZE instead")
   public MAXIMUM_IMPORT_SIZE = this.toOptionalNumber(
-    process.env.MAXIMUM_IMPORT_SIZE
+    environment.MAXIMUM_IMPORT_SIZE
   );
 
   /**
@@ -714,33 +571,14 @@ export class Environment {
    */
   @IsNumber()
   public MAXIMUM_EXPORT_SIZE =
-    this.toOptionalNumber(process.env.MAXIMUM_EXPORT_SIZE) ?? os.totalmem();
-
-  /**
-   * Iframely url
-   */
-  @IsOptional()
-  @IsUrl({
-    require_tld: false,
-    require_protocol: true,
-    allow_underscores: true,
-    protocols: ["http", "https"],
-  })
-  public IFRAMELY_URL = process.env.IFRAMELY_URL ?? "https://iframe.ly";
-
-  /**
-   * Iframely API key
-   */
-  @IsOptional()
-  @CannotUseWithout("IFRAMELY_URL")
-  public IFRAMELY_API_KEY = this.toOptionalString(process.env.IFRAMELY_API_KEY);
+    this.toOptionalNumber(environment.MAXIMUM_EXPORT_SIZE) ?? os.totalmem();
 
   /**
    * Enable unsafe-inline in script-src CSP directive
    */
   @IsBoolean()
   public DEVELOPMENT_UNSAFE_INLINE_CSP = this.toBoolean(
-    process.env.DEVELOPMENT_UNSAFE_INLINE_CSP ?? "false"
+    environment.DEVELOPMENT_UNSAFE_INLINE_CSP ?? "false"
   );
 
   /**
@@ -781,11 +619,11 @@ export class Environment {
     return this.ENVIRONMENT === "test";
   }
 
-  private toOptionalString(value: string | undefined) {
+  protected toOptionalString(value: string | undefined) {
     return value ? value : undefined;
   }
 
-  private toOptionalNumber(value: string | undefined) {
+  protected toOptionalNumber(value: string | undefined) {
     return value ? parseInt(value, 10) : undefined;
   }
 
@@ -801,7 +639,7 @@ export class Environment {
    * @param value The string to convert
    * @returns A boolean
    */
-  private toBoolean(value: string) {
+  protected toBoolean(value: string) {
     try {
       return value ? !!JSON.parse(value) : false;
     } catch (err) {
@@ -823,7 +661,7 @@ export class Environment {
    * @param value The string to convert
    * @returns A boolean or undefined
    */
-  private toOptionalBoolean(value: string | undefined) {
+  protected toOptionalBoolean(value: string | undefined) {
     try {
       return value ? !!JSON.parse(value) : undefined;
     } catch (err) {
@@ -832,6 +670,4 @@ export class Environment {
   }
 }
 
-const env = new Environment();
-
-export default env;
+export default new Environment();

server/models/AuthenticationProvider.ts

@@ -16,17 +16,18 @@ import {
   IsUUID,
   PrimaryKey,
 } from "sequelize-typescript";
-import env from "@server/env";
 import Model from "@server/models/base/Model";
-import AzureClient from "@server/utils/azure";
-import GoogleClient from "@server/utils/google";
-import OIDCClient from "@server/utils/oidc";
 import { ValidationError } from "../errors";
 import Team from "./Team";
 import UserAuthentication from "./UserAuthentication";
 import Fix from "./decorators/Fix";
 import Length from "./validators/Length";
 
+// TODO: Avoid this hardcoding of plugins
+import AzureClient from "plugins/azure/server/azure";
+import GoogleClient from "plugins/google/server/google";
+import OIDCClient from "plugins/oidc/server/oidc";
+
 @Table({
   tableName: "authentication_providers",
   modelName: "authentication_provider",
@@ -86,20 +87,11 @@ class AuthenticationProvider extends Model<
   get oauthClient() {
     switch (this.name) {
       case "google":
-        return new GoogleClient(
-          env.GOOGLE_CLIENT_ID || "",
-          env.GOOGLE_CLIENT_SECRET || ""
-        );
+        return new GoogleClient();
       case "azure":
-        return new AzureClient(
-          env.AZURE_CLIENT_ID || "",
-          env.AZURE_CLIENT_SECRET || ""
-        );
+        return new AzureClient();
       case "oidc":
-        return new OIDCClient(
-          env.OIDC_CLIENT_ID || "",
-          env.OIDC_CLIENT_SECRET || ""
-        );
+        return new OIDCClient();
       default:
         return undefined;
     }

server/models/helpers/AuthenticationHelper.ts

@@ -6,6 +6,7 @@ import find from "lodash/find";
 import sortBy from "lodash/sortBy";
 import env from "@server/env";
 import Team from "@server/models/Team";
+import environment from "@server/utils/environment";
 
 export type AuthenticationProviderConfig = {
   id: string;
@@ -49,7 +50,7 @@ export default class AuthenticationHelper {
 
         // Test the all required env vars are set for the auth provider
         const enabled = (config.requiredEnvVars ?? []).every(
-          (name: string) => !!env[name]
+          (name: string) => !!environment[name]
         );
 
         if (enabled) {

server/test/env.ts

@@ -1,27 +0,0 @@
-import env from "../env";
-
-// test environment variables
-env.SMTP_HOST = "smtp.example.com";
-env.ENVIRONMENT = "test";
-env.GOOGLE_CLIENT_ID = "123";
-env.GOOGLE_CLIENT_SECRET = "123";
-env.SLACK_CLIENT_ID = "123";
-env.SLACK_CLIENT_SECRET = "123";
-
-env.AZURE_CLIENT_ID = undefined;
-env.AZURE_CLIENT_SECRET = undefined;
-env.OIDC_CLIENT_ID = "client-id";
-env.OIDC_CLIENT_SECRET = "client-secret";
-env.OIDC_AUTH_URI = "http://localhost/authorize";
-env.OIDC_TOKEN_URI = "http://localhost/token";
-env.OIDC_USERINFO_URI = "http://localhost/userinfo";
-
-env.RATE_LIMITER_ENABLED = false;
-
-env.FILE_STORAGE = "local";
-env.FILE_STORAGE_LOCAL_ROOT_DIR = "/tmp";
-env.IFRAMELY_API_KEY = "123";
-
-if (process.env.DATABASE_URL_TEST) {
-  env.DATABASE_URL = process.env.DATABASE_URL_TEST;
-}

server/test/globalSetup.js

@@ -1,4 +1,3 @@
-import "./env";
 import { sequelize } from "@server/storage/database";
 
 module.exports = async function () {

server/typings/index.d.ts

@@ -6,8 +6,6 @@ declare module "formidable/lib/file";
 
 declare module "oy-vey";
 
-declare module "dotenv";
-
 declare module "email-providers" {
   const list: string[];
   export default list;

server/utils/azure.ts

@@ -1,36 +0,0 @@
-import JWT from "jsonwebtoken";
-import env from "@server/env";
-import OAuthClient from "./oauth";
-
-type AzurePayload = {
-  /** A GUID that represents the Azure AD tenant that the user is from */
-  tid: string;
-};
-
-export default class AzureClient extends OAuthClient {
-  endpoints = {
-    authorize: "https://login.microsoftonline.com/common/oauth2/v2.0/authorize",
-    token: "https://login.microsoftonline.com/common/oauth2/v2.0/token",
-    userinfo: "https://graph.microsoft.com/v1.0/me",
-  };
-
-  async rotateToken(
-    accessToken: string,
-    refreshToken: string
-  ): Promise<{
-    accessToken: string;
-    refreshToken?: string;
-    expiresAt: Date;
-  }> {
-    if (env.isCloudHosted) {
-      return super.rotateToken(accessToken, refreshToken);
-    }
-
-    const payload = JWT.decode(accessToken) as AzurePayload;
-    return super.rotateToken(
-      accessToken,
-      refreshToken,
-      `https://login.microsoftonline.com/${payload.tid}/oauth2/v2.0/token`
-    );
-  }
-}

server/utils/environment.ts

@@ -0,0 +1,39 @@
+import fs from "fs";
+import path from "path";
+import dotenv from "dotenv";
+
+let environment: Record<string, string> = {};
+
+const envPath = path.resolve(process.cwd(), `.env`);
+const envDefault = fs.existsSync(envPath)
+  ? dotenv.parse(fs.readFileSync(envPath, "utf8"))
+  : {};
+
+// Load environment specific variables, in reverse order of precedence
+const environments = ["production", "development", "local", "test"];
+
+for (const env of environments) {
+  const isEnv = process.env.NODE_ENV === env || envDefault.NODE_ENV === env;
+  const isLocalDevelopment =
+    env === "local" &&
+    (process.env.NODE_ENV === "development" ||
+      envDefault.NODE_ENV === "development");
+
+  if (isEnv || isLocalDevelopment) {
+    const resolvedPath = path.resolve(process.cwd(), `.env.${env}`);
+    if (fs.existsSync(resolvedPath)) {
+      environment = {
+        ...environment,
+        ...dotenv.parse(fs.readFileSync(resolvedPath, "utf8")),
+      };
+    }
+  }
+}
+
+process.env = {
+  ...envDefault,
+  ...environment,
+  ...process.env,
+};
+
+export default process.env;

server/utils/google.ts

@@ -1,9 +0,0 @@
-import OAuthClient from "./oauth";
-
-export default class GoogleClient extends OAuthClient {
-  endpoints = {
-    authorize: "https://accounts.google.com/o/oauth2/auth",
-    token: "https://accounts.google.com/o/oauth2/token",
-    userinfo: "https://www.googleapis.com/oauth2/v3/userinfo",
-  };
-}

server/utils/oidc.ts

@@ -1,10 +0,0 @@
-import env from "@server/env";
-import OAuthClient from "./oauth";
-
-export default class OIDCClient extends OAuthClient {
-  endpoints = {
-    authorize: env.OIDC_AUTH_URI || "",
-    token: env.OIDC_TOKEN_URI || "",
-    userinfo: env.OIDC_USERINFO_URI || "",
-  };
-}

server/utils/unfurl.ts

@@ -4,6 +4,7 @@ import glob from "glob";
 import env from "@server/env";
 import Logger from "@server/logging/Logger";
 import { UnfurlResolver } from "@server/types";
+import environment from "./environment";
 
 const rootDir = env.ENVIRONMENT === "test" ? "" : "build";
 
@@ -25,7 +26,7 @@ const resolvers: Record<string, UnfurlResolver> = plugins.reduce(
 
     // Test the all required env vars are set for the resolver
     const enabled = (config.requiredEnvVars ?? []).every(
-      (name: string) => !!env[name]
+      (name: string) => !!environment[name]
     );
     if (!enabled) {
       return resolvers;