SaaS .env checklist generator

Pick your stack and generate a printable list of required vs optional environment variables for Next.js, Neon, Stripe, and object storage.

Free tools/SaaS .env checklist generator

Matches the common Twenty kit shape: App Router, Postgres, Checkout, and private file storage.Always compare with the kit's own `.env.example` - sellers may rename variables.

Required (8)

  • DATABASE_URL

    Neon (or Postgres) connection string with SSL

  • JWT_SECRET

    Long random secret for signing access tokens (32+ chars)

  • NEXT_PUBLIC_APP_URL

    Public origin used for callbacks, emails, and Open Graph

  • STRIPE_SECRET_KEY

    Stripe secret key for Checkout sessions

  • STRIPE_WEBHOOK_SECRET

    Webhook signing secret for fulfillment

  • S3_BUCKET

    Private bucket for ZIPs / screenshots (or R2 equivalent)

  • S3_ACCESS_KEY_ID

    Object storage access key

  • S3_SECRET_ACCESS_KEY

    Object storage secret - server only

Optional (9)

  • S3_ENDPOINT

    Required for Cloudflare R2 S3-compatible endpoint

  • S3_REGION

    AWS region or `auto` for R2

  • SMTP_HOST

    For verify / reset email in production

  • SMTP_USER

    SMTP username

  • SMTP_PASS

    SMTP password or API token

  • GOOGLE_CLIENT_ID

    If the kit enables Google OAuth

  • GOOGLE_CLIENT_SECRET

    Google OAuth secret

  • GITHUB_CLIENT_ID

    If the kit enables GitHub OAuth

  • GITHUB_CLIENT_SECRET

    GitHub OAuth secret

Printable template

# Full marketplace-style SaaS (Next.js + Neon + Stripe + S3/R2)
# Generated by Twenty tools - review against your kit's .env.example

# --- Required ---
# Neon (or Postgres) connection string with SSL
DATABASE_URL=postgresql://USER:PASSWORD@ep-xxxx.aws.neon.tech/neondb?sslmode=require

# Long random secret for signing access tokens (32+ chars)
JWT_SECRET=

# Public origin used for callbacks, emails, and Open Graph
NEXT_PUBLIC_APP_URL=https://yourdomain.com

# Stripe secret key for Checkout sessions
STRIPE_SECRET_KEY=

# Webhook signing secret for fulfillment
STRIPE_WEBHOOK_SECRET=

# Private bucket for ZIPs / screenshots (or R2 equivalent)
S3_BUCKET=

# Object storage access key
S3_ACCESS_KEY_ID=

# Object storage secret - server only
S3_SECRET_ACCESS_KEY=

# --- Optional ---
# Required for Cloudflare R2 S3-compatible endpoint
# S3_ENDPOINT=

# AWS region or `auto` for R2
# S3_REGION=

# For verify / reset email in production
# SMTP_HOST=

# SMTP username
# SMTP_USER=

# SMTP password or API token
# SMTP_PASS=

# If the kit enables Google OAuth
# GOOGLE_CLIENT_ID=

# Google OAuth secret
# GOOGLE_CLIENT_SECRET=

# If the kit enables GitHub OAuth
# GITHUB_CLIENT_ID=

# GitHub OAuth secret
# GITHUB_CLIENT_SECRET=

These tools are free helpers for SaaS builders. When you are ready, browse production-ready kits on the marketplace.