Configuration

Melange supports configuration via YAML files, environment variables, and command-line flags with the following precedence (highest to lowest):

Command-line flags
Environment variables (MELANGE_* prefix)
Configuration file (melange.yaml or melange.yml)
Built-in defaults

Configuration File

Melange automatically discovers a configuration file by checking each directory for the following names (in order):

melange.yaml
melange.yml
melange/config.yaml
melange/config.yml
melange/melange.yaml
melange/melange.yml

The search starts in the current directory and walks up parent directories until a .git directory is found (repository boundary) or 25 levels are reached. The first match wins.

The melange/ directory convention is the default when you run melange init. Existing melange.yaml files at the project root continue to work. Both layouts are fully supported.

You can override auto-discovery with --config:

melange --config /path/to/custom-config.yaml migrate

File Format

Create a melange.yaml in your project root, or use melange init to generate one:

# Path to OpenFGA schema file (used by all commands)
schema: schemas/schema.fga

# Database connection (used by migrate, status, doctor)
database:
  # Option 1: Full connection URL
  url: postgres://user:password@localhost:5432/mydb?sslmode=prefer

  # Option 2: Discrete fields (used when url is empty)
  # host: localhost
  # port: 5432
  # name: mydb
  # user: melange
  # password: secret
  # sslmode: prefer

  # Optional: install melange objects in a specific PostgreSQL schema
  # schema: authz

# Code generation settings
generate:
  client:
    runtime: go
    schema: schemas/schema.fga  # Overrides top-level schema
    output: internal/authz
    package: authz
    filter: can_
    id_type: string

  # Migration file generation settings (for external frameworks)
  migration:
    output: db/migrations
    name: melange
    format: split           # "split" or "single"

# Migration settings
migrate:
  dry_run: false
  force: false

# Doctor command settings
doctor:
  verbose: false
  skip_performance: false

Minimal Configuration

A minimal configuration for most projects:

schema: schemas/schema.fga

database:
  url: postgres://localhost/mydb

generate:
  client:
    runtime: go
    output: internal/authz

Configuration Reference

Top-Level Settings

Key	Type	Default	Description
`schema`	string	`schemas/schema.fga`	Path to the OpenFGA schema file

Database Settings

Configure under database::

Key	Type	Default	Description
`url`	string	-	Full PostgreSQL connection URL
`host`	string	-	Database host (used when `url` is empty)
`port`	int	`5432`	Database port
`name`	string	-	Database name
`user`	string	-	Database user
`password`	string	-	Database password
`sslmode`	string	`prefer`	SSL mode for connection
`schema`	string	-	PostgreSQL schema for melange objects (see Custom Database Schema)

Connection URL format:

postgres://user:password@host:5432/dbname?sslmode=require

Required fields when using discrete configuration:

host
name
user

SSL Mode Values:

Value	Description
`disable`	No SSL
`allow`	Try non-SSL first, then SSL
`prefer`	Try SSL first, then non-SSL (default)
`require`	Require SSL
`verify-ca`	Require SSL and verify CA
`verify-full`	Require SSL and verify CA and hostname

Generate Client Settings

Configure under generate.client::

Key	Type	Default	Description
`runtime`	string	-	Target runtime: `go`, `typescript`
`schema`	string	(top-level `schema`)	Path to schema file
`output`	string	-	Output directory for generated code
`package`	string	`authz`	Package/module name
`filter`	string	-	Relation prefix filter (e.g., `can_`)
`id_type`	string	`string`	ID type for constructors

Generate Migration Settings

Configure under generate.migration::

Key	Type	Default	Description
`output`	string	`""` (stdout)	Output directory for migration files
`name`	string	`melange`	Migration name suffix in filenames
`format`	string	`split`	Output format: `split` or `single`

Do not configure both generate.migration.output and use melange migrate against the same database. The two strategies track state differently and mixing them causes warnings. See Running Migrations for guidance.

Migrate Settings

Configure under migrate::

Key	Type	Default	Description
`dry_run`	bool	`false`	Output SQL without applying
`force`	bool	`false`	Force migration even if unchanged

Doctor Settings

Configure under doctor::

Key	Type	Default	Description
`verbose`	bool	`false`	Show detailed output
`skip_performance`	bool	`false`	Skip performance checks (view analysis)

Custom Database Schema

By default, melange installs all its objects into the connection’s current schema (usually public). The database.schema option places them in a specific PostgreSQL schema instead.

Objects affected by this setting:

Generated check functions (check_permission, check_document_viewer, etc.)
Generated list functions (list_accessible_objects, list_accessible_subjects, etc.)
The melange_migrations tracking table
The melange_tuples view (you create this yourself, but it should be in the target schema)

Your application tables are not affected. They remain wherever you have them. The tuples view in the target schema can query tables in any other schema.

Prerequisites

You must create the schema before running melange migrate:

CREATE SCHEMA IF NOT EXISTS authz;

The schema must be on your connection’s search_path for permission checks to work at runtime. Most PostgreSQL configurations include public by default, but a custom schema needs to be added:

ALTER ROLE myuser SET search_path TO authz, public;

Or set it per-connection in your application’s connection string or pool configuration.

Configuration

database:
  url: postgres://localhost/mydb
  schema: authz

Or via environment variable:

export MELANGE_DATABASE_SCHEMA=authz

Or via CLI flag:

melange migrate --db postgres://localhost/mydb --db-schema authz

Tuples view setup

Create your melange_tuples view in the target schema. The view itself lives in the custom schema but can reference tables in any schema:

CREATE OR REPLACE VIEW authz.melange_tuples AS
SELECT
    'user' AS subject_type,
    user_id::text AS subject_id,
    role AS relation,
    'organization' AS object_type,
    organization_id::text AS object_id
FROM public.organization_members;

Runtime client configuration

When using a custom schema, configure your runtime client to match:

Go:

checker := melange.NewChecker(db, melange.WithDatabaseSchema("authz"))

TypeScript:

const checker = new Checker({ db, databaseSchema: 'authz' });

Environment Variables

All configuration options can be set via environment variables with the MELANGE_ prefix. Use underscores to separate nested keys:

Environment Variable	Configuration Path
`MELANGE_SCHEMA`	`schema`
`MELANGE_DATABASE_URL`	`database.url`
`MELANGE_DATABASE_HOST`	`database.host`
`MELANGE_DATABASE_PORT`	`database.port`
`MELANGE_DATABASE_NAME`	`database.name`
`MELANGE_DATABASE_USER`	`database.user`
`MELANGE_DATABASE_PASSWORD`	`database.password`
`MELANGE_DATABASE_SSLMODE`	`database.sslmode`
`MELANGE_DATABASE_SCHEMA`	`database.schema`
`MELANGE_GENERATE_CLIENT_RUNTIME`	`generate.client.runtime`
`MELANGE_GENERATE_CLIENT_SCHEMA`	`generate.client.schema`
`MELANGE_GENERATE_CLIENT_OUTPUT`	`generate.client.output`
`MELANGE_GENERATE_CLIENT_PACKAGE`	`generate.client.package`
`MELANGE_GENERATE_CLIENT_FILTER`	`generate.client.filter`
`MELANGE_GENERATE_CLIENT_ID_TYPE`	`generate.client.id_type`
`MELANGE_GENERATE_MIGRATION_OUTPUT`	`generate.migration.output`
`MELANGE_GENERATE_MIGRATION_NAME`	`generate.migration.name`
`MELANGE_GENERATE_MIGRATION_FORMAT`	`generate.migration.format`
`MELANGE_MIGRATE_DRY_RUN`	`migrate.dry_run`
`MELANGE_MIGRATE_FORCE`	`migrate.force`
`MELANGE_DOCTOR_VERBOSE`	`doctor.verbose`
`MELANGE_DOCTOR_SKIP_PERFORMANCE`	`doctor.skip_performance`
`CI`	(special)

Setting CI to any value disables the automatic update check. Most CI providers set this automatically.

Example:

export MELANGE_DATABASE_URL="postgres://prod-user:secret@prod-db:5432/myapp"
export MELANGE_GENERATE_CLIENT_RUNTIME="go"
melange migrate

Boolean values: Use true/false or 1/0 for boolean environment variables.

Configuration Inheritance

Per-command settings can override top-level settings:

# Top-level default
schema: schemas/schema.fga

generate:
  client:
    # Overrides top-level schema for generate command only
    schema: schemas/api-schema.fga

Viewing Effective Configuration

Use melange config show to see the effective configuration after merging all sources:

# Show effective configuration
melange config show

# Show with config file path
melange config show --source

Output:

Config file: /path/to/project/melange.yaml

schema: schemas/schema.fga
database:
  url: postgres://localhost/mydb
  host: ""
  port: 5432
  ...

Security Considerations

Prefer environment variables for secrets in production environments
Avoid committing melange.yaml files containing database.password to version control
Consider using connection URLs with credentials stored in secure secret management systems
For local development, discrete fields in a .gitignored config file are acceptable

Example Configurations

Local Development

schema: schemas/schema.fga

database:
  url: postgres://localhost/myapp_dev

generate:
  client:
    runtime: go
    output: internal/authz
    package: authz

CI/CD Pipeline

Use environment variables for credentials:

# .github/workflows/deploy.yml
env:
  MELANGE_DATABASE_URL: ${{ secrets.DATABASE_URL }}

With a minimal config file:

schema: schemas/schema.fga

generate:
  client:
    runtime: go
    output: internal/authz

Multi-Environment

Use different config files per environment:

# Development
melange --config melange.dev.yaml migrate

# Production
melange --config melange.prod.yaml migrate

Or use environment variable overrides with a shared base config:

# melange.yaml (shared)
schema: schemas/schema.fga

generate:
  client:
    runtime: go
    output: internal/authz

# Override database per environment
MELANGE_DATABASE_URL="postgres://prod-host/myapp" melange migrate

CLI Reference Go API