Phase 5: The Dev/Production Split

I once tested a "delete all users" feature directly in production. It worked perfectly—deleted all 200 real users. Recovery took 6 hours and several panicked emails. The lesson: You need a safe playground separate from your real app. That's what development and production environments are for.

Risk Radar: The 'It Works on My Machine' Trap

The Mistake: Building everything on your laptop, then deploying to production and discovering nothing works because the environments are different (different Node version, missing environment variables, etc.).

The Fix: Keep development and production as similar as possible. Use the same database type, same Node version, same environment variable names (but different values).

Time saved: 4-10 hours of "why does it work locally but not in production?" debugging

LLM Conversation Starter

Set up proper environment separation:

I'm deploying my [Next.js/React/etc.] app to production.

Help me set up:
1. Separate development and production databases
2. Different environment variables for each environment
3. A safe workflow to test changes before they go live
4. What should be the same vs different between environments?

I want to avoid breaking production while I'm developing.

Why this works:

Your LLM will generate a complete environment setup checklist. This prevents 90% of deployment disasters.

Why You Need Both Environments

Think of development as your workshop and production as your showroom. You make a mess in the workshop, break things, test crazy ideas. But the showroom? That's pristine, because customers are there.

Development

Location: Your laptop (localhost:3000)

What it's for:

• Breaking things safely
• Rapid iteration
• Testing with fake data
• Trying experimental features

Characteristics:

• Detailed error messages
• Slower (for better debugging)
• Uses dev database
• Only you can access it

Production

Location: The cloud (yourapp.com)

What it's for:

• Real users with real data
• Must always work
• Handles actual traffic
• Processes real payments

Characteristics:

• Generic error messages (security)
• Optimized for speed
• Uses production database
• World can access it

The Golden Rule

Never develop directly in production. Never test with production data.

If you're thinking "just this once, for a quick fix," STOP. That's how production breaks. Always test in development first, no exceptions.

The Safe Testing Workflow

This is the workflow that prevents production disasters. Print it out, tape it to your monitor, follow it religiously.

Code in Development

Write your feature, test it with fake data on localhost. Break things, experiment, make a mess. This is your safe space.

npm run dev # Runs on http://localhost:3000

Test All Scenarios

Don't just test the happy path. Try to break it:

• What if the user enters nothing?
• What if they enter way too much?
• What if they click submit 10 times?
• What if the database is slow?

Commit to Git

Once it works locally, commit your changes. This creates a snapshot you can revert to if production deployment goes wrong.

git add .
git commit -m "Add user profile feature"
git push origin main

Deploy to Production

Push to GitHub, let Vercel auto-deploy. Wait 2 minutes for build to complete.

# Vercel automatically deploys when you push to main
# Check deployment status at vercel.com/dashboard

Test in Production (Yes, Really)

Don't assume it works. Actually test the feature on yourapp.com:

• Click through the feature yourself
• Check the database for expected changes
• Verify emails sent (if applicable)
• Test on mobile if it's a UI change

Monitor for Issues

Watch for errors for 10-15 minutes after deployment. Check error logs, user reports, analytics. If something breaks, you have a Git commit to revert to.

PM Insight: The Friday Deployment Rule

Professional teams avoid Friday deployments unless absolutely necessary. Here's why:

• If something breaks, you're fixing it on Saturday
• Team members might be unreachable for help
• Users expect weekend stability

The better approach: Deploy Monday-Thursday. This gives you time to catch issues while everyone's working. Friday is for monitoring and small fixes only.

Splitting Your Database (Critical)

This is non-negotiable: Your development and production databases must be completely separate. Otherwise, you WILL accidentally delete real user data while testing. I've seen it happen a dozen times.

How to Set Up Separate Databases

Step 1: Create Two Databases

On your database provider (Neon, Supabase, etc.), create two separate databases:

• myapp-dev (for development)
• myapp-prod (for production)

Step 2: Different Connection Strings

# .env.local (development, on your laptop)

DATABASE_URL="postgresql://...myapp-dev..."

# Production (on Vercel)

DATABASE_URL="postgresql://...myapp-prod..."

Step 3: Populate Dev Database with Fake Data

Create test users, test posts, test everything. Make it realistic but obviously fake (use emails like "test@example.com", names like "Test User 1").

Security Alert: The Database Mix-Up Prevention

Triple-check which database you're connected to:

# Add this to your database client
SELECT current_database();

Before running ANY destructive command (DELETE, DROP, TRUNCATE), verify you're in the dev database. Consider adding a "safe mode" check that requires typing the database name before deletions.

Emergency Procedures (When Production Breaks)

Despite your best efforts, production will break eventually. Having a plan BEFORE it happens reduces panic and recovery time.

Production Break Checklist

1. Don't Panic (2 minutes)

Take a breath. Most issues aren't as bad as they first appear. Grab water, then assess.

2. Assess Impact (5 minutes)

• Is the entire site down or just one feature?
• Are users reporting issues?
• Is data being corrupted or just unavailable?
• Check error logs for clues

3. Quick Fix or Rollback? (5 minutes)

→

Quick Fix: If you can fix in under 15 minutes

Example: Typo in code, wrong env var value

→

Rollback: If fix will take longer

Revert to last working commit, fix properly in dev

4. Execute Rollback (5 minutes)

git revert HEAD
git push origin main
# Wait for Vercel to redeploy (~2 minutes)

5. Communicate (if users affected)

If users noticed, acknowledge it. "We had a brief issue, it's fixed now." Transparency builds trust.

6. Post-Mortem (next day)

Write down what broke, why, and how to prevent it. This becomes your playbook for next time.

Prevention Beats Recovery

Set up monitoring so you know about issues before users report them:

Vercel Error Monitoring: See crashes in real-time
Database Backups: Daily automated backups (most hosts do this automatically)
Uptime Monitor: Free tools like UptimeRobot ping your site every 5 minutes

Phase 5 Complete Checklist

Have separate development and production databasesDifferent .env files for each environmentTested the 6-step deployment workflowNever developed directly in productionKnow how to rollback a broken deploymentHave database backups configuredSet up basic error monitoringDocumented emergency proceduresAvoid Friday deployments (unless emergency)

"Everyone has a testing environment. Some people are lucky enough to have a separate production environment."

– Anonymous DevOps Engineer (probably after a production incident)

Previous: Future-Proofing Next: Security Essentials

I'm deploying my [Next.js/React/etc.] app to production. Help me set up: 1. Separate development and production databases 2. Different environment variables for each environment 3. A safe workflow to test changes before they go live 4. What should be the same vs different between environments? I want to avoid breaking production while I'm developing.

Why You Need Both Environments

Think of development as your workshop and production as your showroom. You make a mess in the workshop, break things, test crazy ideas. But the showroom? That's pristine, because customers are there.

Development

Location: Your laptop (localhost:3000)

What it's for:

• Breaking things safely
• Rapid iteration
• Testing with fake data
• Trying experimental features

Characteristics:

• Detailed error messages
• Slower (for better debugging)
• Uses dev database
• Only you can access it

Production

Location: The cloud (yourapp.com)

What it's for:

• Real users with real data
• Must always work
• Handles actual traffic
• Processes real payments

Characteristics:

• Generic error messages (security)
• Optimized for speed
• Uses production database
• World can access it

The Golden Rule

Never develop directly in production. Never test with production data.

If you're thinking "just this once, for a quick fix," STOP. That's how production breaks. Always test in development first, no exceptions.

The Safe Testing Workflow

This is the workflow that prevents production disasters. Print it out, tape it to your monitor, follow it religiously.

Code in Development

Write your feature, test it with fake data on localhost. Break things, experiment, make a mess. This is your safe space.

npm run dev # Runs on http://localhost:3000

Test All Scenarios

Don't just test the happy path. Try to break it:

• What if the user enters nothing?
• What if they enter way too much?
• What if they click submit 10 times?
• What if the database is slow?

Commit to Git

Once it works locally, commit your changes. This creates a snapshot you can revert to if production deployment goes wrong.

git add .
git commit -m "Add user profile feature"
git push origin main

Deploy to Production

Push to GitHub, let Vercel auto-deploy. Wait 2 minutes for build to complete.

# Vercel automatically deploys when you push to main
# Check deployment status at vercel.com/dashboard

Test in Production (Yes, Really)

Don't assume it works. Actually test the feature on yourapp.com:

• Click through the feature yourself
• Check the database for expected changes
• Verify emails sent (if applicable)
• Test on mobile if it's a UI change

Monitor for Issues

Watch for errors for 10-15 minutes after deployment. Check error logs, user reports, analytics. If something breaks, you have a Git commit to revert to.

PM Insight: The Friday Deployment Rule

Professional teams avoid Friday deployments unless absolutely necessary. Here's why:

• If something breaks, you're fixing it on Saturday
• Team members might be unreachable for help
• Users expect weekend stability

The better approach: Deploy Monday-Thursday. This gives you time to catch issues while everyone's working. Friday is for monitoring and small fixes only.

Splitting Your Database (Critical)

How to Set Up Separate Databases

Step 1: Create Two Databases

On your database provider (Neon, Supabase, etc.), create two separate databases:

• myapp-dev (for development)
• myapp-prod (for production)

Step 2: Different Connection Strings

# .env.local (development, on your laptop)

DATABASE_URL="postgresql://...myapp-dev..."

# Production (on Vercel)

DATABASE_URL="postgresql://...myapp-prod..."

Step 3: Populate Dev Database with Fake Data

Create test users, test posts, test everything. Make it realistic but obviously fake (use emails like "test@example.com", names like "Test User 1").

Security Alert: The Database Mix-Up Prevention

Triple-check which database you're connected to:

# Add this to your database client
SELECT current_database();

Before running ANY destructive command (DELETE, DROP, TRUNCATE), verify you're in the dev database. Consider adding a "safe mode" check that requires typing the database name before deletions.

Emergency Procedures (When Production Breaks)

Despite your best efforts, production will break eventually. Having a plan BEFORE it happens reduces panic and recovery time.

Production Break Checklist

1. Don't Panic (2 minutes)

Take a breath. Most issues aren't as bad as they first appear. Grab water, then assess.

2. Assess Impact (5 minutes)

• Is the entire site down or just one feature?
• Are users reporting issues?
• Is data being corrupted or just unavailable?
• Check error logs for clues

3. Quick Fix or Rollback? (5 minutes)

→

Quick Fix: If you can fix in under 15 minutes

Example: Typo in code, wrong env var value

→

Rollback: If fix will take longer

Revert to last working commit, fix properly in dev

4. Execute Rollback (5 minutes)

git revert HEAD
git push origin main
# Wait for Vercel to redeploy (~2 minutes)

5. Communicate (if users affected)

If users noticed, acknowledge it. "We had a brief issue, it's fixed now." Transparency builds trust.

6. Post-Mortem (next day)

Write down what broke, why, and how to prevent it. This becomes your playbook for next time.

Prevention Beats Recovery

Set up monitoring so you know about issues before users report them:

Vercel Error Monitoring: See crashes in real-time
Database Backups: Daily automated backups (most hosts do this automatically)
Uptime Monitor: Free tools like UptimeRobot ping your site every 5 minutes

LLM Conversation Starter

Why You Need Both Environments

Development

Production

The Golden Rule

The Safe Testing Workflow

Code in Development

Test All Scenarios

Commit to Git

Deploy to Production

Test in Production (Yes, Really)

Monitor for Issues

Splitting Your Database (Critical)

How to Set Up Separate Databases

Emergency Procedures (When Production Breaks)

Production Break Checklist

Prevention Beats Recovery

Phase 5 Complete Checklist

Alex Sonne

LLM Conversation Starter

Why You Need Both Environments

Development

Production

The Golden Rule

The Safe Testing Workflow

Code in Development

Test All Scenarios

Commit to Git

Deploy to Production

Test in Production (Yes, Really)

Monitor for Issues

Splitting Your Database (Critical)

How to Set Up Separate Databases

Emergency Procedures (When Production Breaks)

Production Break Checklist

Prevention Beats Recovery

Phase 5 Complete Checklist