Environment Configuration

Connectum provides type-safe environment configuration using Zod schemas, following the 12-Factor App methodology. All configuration is read from environment variables with sensible defaults.

ConnectumEnvSchema

The ConnectumEnvSchema exported from @connectum/core defines all recognized environment variables:

typescript

import { parseEnvConfig } from '@connectum/core';

const config = parseEnvConfig();

console.log(config.PORT);           // 5000 (default)
console.log(config.LISTEN);         // "0.0.0.0" (default)
console.log(config.LOG_LEVEL);      // "info" (default)
console.log(config.NODE_ENV);       // "development" (default)

Environment Variables Reference

Server

Variable	Type	Default	Description
`PORT`	`number`	`5000`	Server port (1--65535)
`LISTEN`	`string`	`"0.0.0.0"`	Listen address
`NODE_ENV`	`enum`	`"development"`	`"development"`, `"production"`, or `"test"`

Logging

Variable	Type	Default	Description
`LOG_LEVEL`	`enum`	`"info"`	`"debug"`, `"info"`, `"warn"`, or `"error"`
`LOG_FORMAT`	`enum`	`"json"`	`"json"` (structured) or `"pretty"` (human-readable)
`LOG_BACKEND`	`enum`	`"otel"`	`"otel"`, `"pino"`, or `"console"`

Health Check

Variable	Type	Default	Description
`HTTP_HEALTH_ENABLED`	`boolean`	`false`	Enable HTTP health endpoints (`/healthz`, `/health`, `/readyz`)
`HTTP_HEALTH_PATH`	`string`	`"/healthz"`	Primary HTTP health endpoint path

OpenTelemetry

Variable	Type	Default	Description
`OTEL_SERVICE_NAME`	`string`	--	Service name reported to the collector
`OTEL_EXPORTER_OTLP_ENDPOINT`	`string (url)`	--	OTLP collector endpoint (e.g. `http://localhost:4318`)

Graceful Shutdown

Variable	Type	Default	Description
`GRACEFUL_SHUTDOWN_ENABLED`	`boolean`	`true`	Enable automatic graceful shutdown on SIGTERM/SIGINT
`GRACEFUL_SHUTDOWN_TIMEOUT_MS`	`number`	`30000`	Maximum time (ms) to wait for in-flight requests (0--300000)

TIP

Boolean environment variables accept "true", "false", "1", "0", "yes", and "no".

Parsing and Validation

parseEnvConfig()

Parses process.env (or a custom object) and throws a ZodError if validation fails:

typescript

import { parseEnvConfig } from '@connectum/core';

try {
  const config = parseEnvConfig();
  console.log(`Starting on port ${config.PORT}`);
} catch (err) {
  console.error('Invalid configuration:', err.message);
  process.exit(1);
}

safeParseEnvConfig()

Returns a Zod result object instead of throwing:

typescript

import { safeParseEnvConfig } from '@connectum/core';

const result = safeParseEnvConfig();

if (result.success) {
  console.log(`Port: ${result.data.PORT}`);
} else {
  console.error('Validation errors:');
  console.error(result.error.format());
  process.exit(1);
}

Custom Environment Source

Both functions accept an optional env object, useful for testing:

typescript

const config = parseEnvConfig({
  PORT: '8080',
  NODE_ENV: 'production',
  LOG_LEVEL: 'warn',
});

Using Config with createServer()

The env schema defines defaults that align with CreateServerOptions. You can wire them together:

typescript

import { createServer, parseEnvConfig } from '@connectum/core';
import { Healthcheck, healthcheckManager, ServingStatus } from '@connectum/healthcheck';
import { Reflection } from '@connectum/reflection';
import routes from '#gen/routes.js';

const env = parseEnvConfig();

const server = createServer({
  services: [routes],
  port: env.PORT,
  host: env.LISTEN,
  protocols: [
    Healthcheck({ httpEnabled: env.HTTP_HEALTH_ENABLED }),
    Reflection(),
  ],
  shutdown: {
    autoShutdown: env.GRACEFUL_SHUTDOWN_ENABLED,
    timeout: env.GRACEFUL_SHUTDOWN_TIMEOUT_MS,
  },
});

server.on('ready', () => {
  healthcheckManager.update(ServingStatus.SERVING);
});

await server.start();

TLS Configuration

TLS is configured via the tls option in createServer(). Certificates can be loaded from explicit paths or a directory:

typescript

import { createServer, readTLSCertificates } from '@connectum/core';

// Option A: Explicit paths
const server = createServer({
  services: [routes],
  tls: {
    keyPath: '/etc/ssl/server.key',
    certPath: '/etc/ssl/server.crt',
  },
});

// Option B: Directory (looks for server.key and server.crt)
const server = createServer({
  services: [routes],
  tls: {
    dirPath: '/etc/ssl/certs',
  },
});

The TLS_DIR_PATH environment variable sets the default directory for getTLSPath():

Variable	Default (dev)	Default (prod)
`TLS_DIR_PATH`	`../../keys` (relative to cwd)	cwd

WARNING

In production, always set TLS_DIR_PATH explicitly or provide keyPath/certPath in the tls option.

Extending the Schema

You can compose ConnectumEnvSchema with your own application-specific variables using Zod's .merge() or .extend():

typescript

import { z } from 'zod';
import { ConnectumEnvSchema } from '@connectum/core';

const AppEnvSchema = ConnectumEnvSchema.extend({
  DATABASE_URL: z.string().url(),
  REDIS_URL: z.string().url().optional(),
  API_KEY: z.string().min(32),
});

type AppEnv = z.infer<typeof AppEnvSchema>;

const config: AppEnv = AppEnvSchema.parse(process.env);

Configuration by Environment

Development `.env`

bash

PORT=5000
NODE_ENV=development
LOG_LEVEL=debug
LOG_FORMAT=pretty
LOG_BACKEND=console
HTTP_HEALTH_ENABLED=true
GRACEFUL_SHUTDOWN_ENABLED=false

Production `.env`

bash

PORT=5000
NODE_ENV=production
LOG_LEVEL=warn
LOG_FORMAT=json
LOG_BACKEND=otel
OTEL_SERVICE_NAME=my-service
OTEL_EXPORTER_OTLP_ENDPOINT=http://otel-collector:4318
HTTP_HEALTH_ENABLED=true
GRACEFUL_SHUTDOWN_ENABLED=true
GRACEFUL_SHUTDOWN_TIMEOUT_MS=30000
TLS_DIR_PATH=/etc/ssl/connectum

Docker and Kubernetes

Dockerfile

dockerfile

FROM node:25-slim
WORKDIR /app
COPY . .
RUN corepack enable && pnpm install --frozen-lockfile
ENV NODE_ENV=production
EXPOSE 5000
CMD ["node", "--experimental-strip-types", "src/index.ts"]

Kubernetes Pod Spec (excerpt)

yaml

containers:
  - name: my-service
    image: my-service:latest
    ports:
      - containerPort: 5000
    env:
      - { name: NODE_ENV, value: "production" }
      - { name: LOG_LEVEL, value: "info" }
      - { name: OTEL_SERVICE_NAME, value: "my-service" }
      - { name: HTTP_HEALTH_ENABLED, value: "true" }
      - { name: GRACEFUL_SHUTDOWN_ENABLED, value: "true" }
    livenessProbe:
      httpGet: { path: /healthz, port: 5000 }
    readinessProbe:
      httpGet: { path: /readyz, port: 5000 }

TIP

Set GRACEFUL_SHUTDOWN_TIMEOUT_MS to a value lower than the Kubernetes terminationGracePeriodSeconds (default 30s) to ensure the application shuts down before the pod is force-killed.

Server Overview -- quick start and key concepts
Graceful Shutdown -- shutdown hooks and Kubernetes integration
Custom Interceptors -- creating custom interceptors
Custom Protocols -- creating protocol plugins
Method Filtering -- per-method interceptor routing
@connectum/core -- Package Guide
@connectum/core API -- Full API Reference

Environment Configuration ​

ConnectumEnvSchema ​

Environment Variables Reference ​

Server ​

Logging ​

Health Check ​

OpenTelemetry ​

Graceful Shutdown ​

Parsing and Validation ​

parseEnvConfig() ​

safeParseEnvConfig() ​

Custom Environment Source ​

Using Config with createServer() ​

TLS Configuration ​

Extending the Schema ​

Configuration by Environment ​

Development .env ​

Production .env ​

Docker and Kubernetes ​

Dockerfile ​

Kubernetes Pod Spec (excerpt) ​

Related ​

Environment Configuration

ConnectumEnvSchema

Environment Variables Reference

Server

Logging

Health Check

OpenTelemetry

Graceful Shutdown

Parsing and Validation

parseEnvConfig()

safeParseEnvConfig()

Custom Environment Source

Using Config with createServer()

TLS Configuration

Extending the Schema

Configuration by Environment

Development `.env`

Production `.env`

Docker and Kubernetes

Dockerfile

Kubernetes Pod Spec (excerpt)

Related