Skip to content
SP StackPractices
ES
intermediate

Feature Flags

How to implement feature toggles to safely roll out, test, and rollback functionality without deploying code.

feature-flags toggles rollout ab-testing devops python javascript java
Topics: devops

Overview

Feature flags (or feature toggles) decouple deployment from release. They let you merge incomplete features to main, enable them for a subset of users, measure impact, and instantly roll back without a new deployment. This recipe covers building a lightweight flag service, rollout strategies (boolean, percentage, user targeting), and safe cleanup patterns in Python, JavaScript, and Java.

When to Use

Use this resource when:

  • Rolling out a high-risk feature gradually to monitor for errors
  • Running A/B tests to compare two implementations of a feature
  • Deploying incomplete code to main without exposing it to users
  • Needing an instant kill-switch for a feature causing production issues

Solution

Python

import hashlib
import random
from typing import Callable

class FeatureFlags:
    def __init__(self, config: dict[str, any]):
        self.config = config

    def is_enabled(self, flag: str, user_id: str = None) -> bool:
        rule = self.config.get(flag, False)

        if isinstance(rule, bool):
            return rule

        if isinstance(rule, dict):
            # Percentage rollout
            if "percentage" in rule and user_id:
                bucket = self._hash_bucket(user_id, flag)
                return bucket < rule["percentage"]
            # Targeted users
            if "users" in rule and user_id:
                return user_id in rule["users"]
            # Targeted groups
            if "groups" in rule:
                return self._check_groups(rule["groups"])

        return False

    def _hash_bucket(self, user_id: str, flag: str) -> int:
        digest = hashlib.md5(f"{flag}:{user_id}".encode()).hexdigest()
        return int(digest, 16) % 100

    def _check_groups(self, groups: list[str]) -> bool:
        # Hook for group membership lookup
        return False

# Usage
flags = FeatureFlags({
    "new_dashboard": True,
    "beta_search": {"percentage": 10},          # 10% rollout
    "vip_feature": {"users": ["user_123"]},     # targeted
    "admin_tools": {"groups": ["admins"]},       # group-based
})

if flags.is_enabled("new_dashboard"):
    render_new_dashboard()

if flags.is_enabled("beta_search", user_id="user_456"):
    show_beta_search()

JavaScript

import { createHash } from "crypto";

class FeatureFlags {
  constructor(config) {
    this.config = config;
  }

  isEnabled(flag, userId = null) {
    const rule = this.config[flag] ?? false;

    if (typeof rule === "boolean") return rule;
    if (typeof rule !== "object") return false;

    if (rule.percentage != null && userId) {
      return this.#hashBucket(userId, flag) < rule.percentage;
    }
    if (rule.users && userId) {
      return rule.users.includes(userId);
    }
    if (rule.groups) {
      return this.#checkGroups(rule.groups);
    }
    return false;
  }

  #hashBucket(userId, flag) {
    const hash = createHash("md5").update(`${flag}:${userId}`).digest("hex");
    return parseInt(hash.slice(0, 8), 16) % 100;
  }

  #checkGroups(groups) {
    return false; // hook for group membership
  }
}

// Usage
const flags = new FeatureFlags({
  newDashboard: true,
  betaSearch: { percentage: 10 },
  vipFeature: { users: ["user_123"] },
  adminTools: { groups: ["admins"] },
});

if (flags.isEnabled("newDashboard")) {
  renderNewDashboard();
}

if (flags.isEnabled("betaSearch", "user_456")) {
  showBetaSearch();
}

Java

import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.util.*;

public class FeatureFlags {
  private final Map<String, Object> config;

  public FeatureFlags(Map<String, Object> config) {
    this.config = config;
  }

  public boolean isEnabled(String flag, String userId) {
    Object rule = config.getOrDefault(flag, false);

    if (rule instanceof Boolean b) return b;
    if (!(rule instanceof Map<?, ?> map)) return false;

    @SuppressWarnings("unchecked")
    Map<String, Object> ruleMap = (Map<String, Object>) map;

    if (ruleMap.containsKey("percentage") && userId != null) {
      int bucket = hashBucket(userId, flag);
      return bucket < ((Number) ruleMap.get("percentage")).intValue();
    }
    if (ruleMap.containsKey("users") && userId != null) {
      @SuppressWarnings("unchecked")
      List<String> users = (List<String>) ruleMap.get("users");
      return users.contains(userId);
    }
    if (ruleMap.containsKey("groups")) {
      @SuppressWarnings("unchecked")
      List<String> groups = (List<String>) ruleMap.get("groups");
      return checkGroups(groups);
    }
    return false;
  }

  private int hashBucket(String userId, String flag) {
    try {
      MessageDigest md = MessageDigest.getInstance("MD5");
      byte[] digest = md.digest((flag + ":" + userId).getBytes());
      return Math.abs(Arrays.hashCode(digest)) % 100;
    } catch (NoSuchAlgorithmException e) {
      return 0;
    }
  }

  private boolean checkGroups(List<String> groups) {
    return false; // hook for group membership lookup
  }

  // Usage
  public static void main(String[] args) {
    Map<String, Object> config = Map.of(
      "newDashboard", true,
      "betaSearch", Map.of("percentage", 10),
      "vipFeature", Map.of("users", List.of("user_123")),
      "adminTools", Map.of("groups", List.of("admins"))
    );

    FeatureFlags flags = new FeatureFlags(config);
    System.out.println(flags.isEnabled("newDashboard", null)); // true
    System.out.println(flags.isEnabled("betaSearch", "user_456")); // ~10%
  }
}

Explanation

  • Boolean flags are on/off switches for the entire application. Use them for kill-switches and dark launches.
  • Percentage rollouts assign users to buckets via a deterministic hash of (flag_name + user_id) % 100. The same user always sees the same bucket, ensuring consistent experiences.
  • User targeting explicitly whitelists users (beta testers, internal team) for early access.
  • Group targeting checks membership in roles or segments (admin, premium, geographic region).
  • Deterministic hashing is critical: random assignment would cause a single user to flip between variants on every request, breaking UX and analytics.

Variants

StrategyRule TypeBest For
Booleantrue / falseKill-switches, emergency rollbacks
Percentage{"percentage": 10}Gradual rollout, canary releases
User Target{"users": ["id1"]}Beta programs, internal dogfooding
Group Target{"groups": ["premium"]}Feature tiers, role-based access
A/B Test{"percentage": 50, "variant": "B"}Comparing two implementations

Best Practices

  1. Keep flags short-lived — permanent flags become technical debt. Remove them and the dead code paths once a feature is fully rolled out.
  2. Use deterministic bucketing — hash (flag + user_id) so the same user always gets the same experience, avoiding flip-flopping.
  3. Log flag evaluations — record which users saw which variant for debugging and analytics correlation.
  4. Default to off — if the flag service is unreachable, the feature should be disabled to prevent unexpected exposure.
  5. Audit flag changes — treat flag configuration changes like production deploys; require code review and track in version control.

Common Mistakes

  1. Leaving flags in the codebase permanently, creating a maze of dead code paths.
  2. Using random bucketing instead of deterministic hashing, causing inconsistent user experiences.
  3. Not handling the case where the flag config service is down, causing cascading failures.
  4. Over-targeting flags to individual users instead of groups, making management unscalable.
  5. Releasing a feature under a flag without monitoring or alerting, missing production issues.

Frequently Asked Questions

When should I remove a feature flag?

Remove the flag and its conditional branches once the feature is stable for 100% of users and has been running in production without issues for 1-2 release cycles. Flags that live longer than a month after full rollout become technical debt.

How do feature flags differ from configuration settings?

Configuration settings are typically static and apply globally (timeout values, feature limits). Feature flags are dynamic, user-scoped, and designed for rapid toggling without redeployment. Flags evaluate per-request; config is loaded at startup.

Can I use feature flags for authorization?

No. Feature flags control feature visibility and rollout; authorization controls access rights. Do not use flags to enforce security boundaries. A user bypassing a flag check should not gain unauthorized access to sensitive data or operations.