This guide is applicable to Dagster Cloud. Refer to the Using environment variables and secrets in Dagster code guide for info about Dagster Open Source.
Environment variables, which are key-value pairs configured outside your source code, allow you to dynamically modify application behavior depending on environment.
Using environment variables, you can define various configuration options for your Dagster application and securely set up secrets. For example, instead of hard-coding database credentials - which is bad practice and cumbersome for development - you can use environment variables to supply user details. This allows you to parameterize your pipeline without modifying code or insecurely storing sensitive data.
There are two types of environment variables in Dagster Cloud:
In the following table, we compare the supported methods for managing and passing environment variables in Dagster Cloud:
| Setup method | How it works | May be a good fit if... |
|---|---|---|
| GitHub secrets | Environment variables are defined in a GitHub repository using Action Secrets. Supported for Serverless deployments only. |
|
| dagster-cloud CLI | Environment variables are passed in using the --env flag in the CLI. Supported for Serverless deployments only. |
|
| Agent configuration | Environment variables are defined in the agent's configuration in your project's dagster_cloud.yaml file. Values are pulled from your user cluster, meaning they don't pass through Dagster Cloud.Supported for Hybrid deployments only. |
|
Only supported for Serverless deployments.
Step 1: Create GitHub Action Secrets
API_TOKENStep 2: Uncomment the env_vars property
To make the secrets you created available, you'll need to modify two files in your GitHub repository.
In the .github/workflows/branch_deployments.yml and .github/workflows/deploy.yml files, uncomment the env_vars property as follows:
# Uncomment to pass through Github Action secrets as a JSON string of key-value pairs env_vars: ${{ toJson(secrets) }}
The secrets you created in the repository will now be available to your Dagster code as environment variables.
Ready to start using environment variables in your Dagster code? Refer to the Using environment variables and secrets in Dagster code guide for more info and examples.
Dagster Cloud provides a set of built-in, automatically populated environment variables, such as the name of a deployment or details about a branch deployment commit, that can be used to modify behavior based on environment.
The following variables are available in every deployment of your Dagster Cloud instance, including full (e.g., prod) and branch deployments.
| Property | Description |
|---|---|
| DAGSTER_CLOUD_DEPLOYMENT_NAME | The name of the Dagster Cloud deployment. For example, prod. |
| DAGSTER_CLOUD_IS_BRANCH_DEPLOYMENT | If 1, the deployment is a branch deployment. Refer to the Branch Deployment variables section for a list of variables available in branch deployments. |
The following environment variables are currently available only in a branch deployment.
For every commit made to a branch, the following metadata is available:
| Property | Description |
|---|---|
| DAGSTER_CLOUD_GIT_SHA | The SHA of the commit. |
| DAGSTER_CLOUD_GIT_TIMESTAMP | The time the commit occurred. |
| DAGSTER_CLOUD_GIT_AUTHOR_EMAIL | The email of the git user who authored the commit. |
| DAGSTER_CLOUD_GIT_AUTHOR_NAME | The name of the git user who authored the commit. |
| DAGSTER_CLOUD_GIT_MESSAGE | The message associated with the commit. |
| DAGSTER_CLOUD_GIT_BRANCH | The name of the branch associated with the commit. |
| DAGSTER_CLOUD_GIT_REPO | The name of the repository associated with the commit. |
| DAGSTER_CLOUD_PULL_REQUEST_ID | The ID of the pull request associated with the commit. |
| DAGSTER_CLOUD_PULL_REQUEST_STATUS | The status of the pull request at the time of the commit. Possible values are OPEN, CLOSED, and MERGED. |