Thinkphp5 framework shares on github how to uniformly manage various api interfaces without revealing passwords.

< H2 > problem description: < / H2 >

when sharing the php source code developed by the thinkphp5 framework to github or directly copying and sharing, the code involves the database account password and various third parties such as Alipay payment interface key qq login password to send SMS interface password. It is troublesome to modify it each time, and it also affects your own use. Is there anything more mature

? < H2 > probably my own idea: < / H2 >

I found that there is a .env environment variable configuration file in the thinkphp framework. Should I put all the sensitive information in this file and call it again? Or put it in a table in the database? And please give us a lot of advice!

Menu