Enterprise Security Settings
{ "permissions": { "disableBypassPermissionsMode": "disable", "deny": [ "Bash(curl:*)", "Bash(wget:*)", "WebFetch" ] }, "forceLoginMethod": "console"}Essential Configuration
Claude Code’s flexibility comes from its extensive configuration options. This guide covers essential settings to optimize your development workflow, from permission management to model selection strategies.
Configuration Hierarchy
Section titled “Configuration Hierarchy”- Enterprise policies -
/Library/Application Support/ClaudeCode/managed-settings.json(macOS) - Command line arguments - Flags passed when launching Claude Code
- Local project settings -
.claude/settings.local.json(not in source control) - Shared project settings -
.claude/settings.json(checked into source control) - User settings -
~/.claude/settings.json(applies to all projects)
Settings are applied in order of precedence, with enterprise policies overriding all others.
Quick Configuration Setup
Section titled “Quick Configuration Setup”# Launch configuration menu/config
# View current settingsclaude config list
# Set a specific optionclaude config set model claude-sonnet-4{ "model": "claude-sonnet-4", "permissions": { "defaultMode": "acceptEdits", "allow": [ "Edit", "Bash(npm test:*)", "Bash(git:*)" ] }, "hooks": { "PostToolUse": { "Edit": "npm run lint --fix $CLAUDE_FILE_PATHS" } }}Permission Modes
Section titled “Permission Modes”Claude Code offers several permission modes to balance safety and productivity:
Available Modes
Section titled “Available Modes”| Mode | Description | Use Case |
|---|---|---|
default | Prompts for each new tool use | General development |
acceptEdits | Auto-accepts file edits for session | Active coding sessions |
plan | Read-only analysis mode | Code review, architecture planning |
bypassPermissions | Skip all permission prompts | Trusted environments only |
Yolo Mode (Bypass Permissions)
Section titled “Yolo Mode (Bypass Permissions)”# Launch with permissions bypassedclaude --dangerously-skip-permissions
# Equivalent to setting in configclaude --permission-mode bypassPermissionsThis mode eliminates interruptions from permission prompts, significantly improving workflow speed for experienced users.
Model Selection Strategy
Section titled “Model Selection Strategy”Claude Code defaults to intelligent model switching, but you can optimize for your use case:
Model Capabilities
Section titled “Model Capabilities”| Model | Best For | Cost | Speed |
|---|---|---|---|
| Claude Opus 4 | Complex reasoning, architecture | 5x | Slower |
| Claude Sonnet 4 | General coding, implementation | 1x | Fast |
| OpenAI o3 | Debugging complex issues | Varies | Medium |
| Gemini 2.5 Pro | Large context scenarios | 2x | Fast |
Dynamic Model Selection
Section titled “Dynamic Model Selection”# Switch models mid-session/model opus # For complex planning/model sonnet # For implementation
# Set default modelclaude config set model claude-sonnet-4
# Override per sessionclaude --model claude-opus-4Cost-Optimized Configuration
Section titled “Cost-Optimized Configuration”{ "model": "claude-sonnet-4", "permissions": { "defaultMode": "acceptEdits" }, "env": { "DISABLE_NON_ESSENTIAL_MODEL_CALLS": "1", "DISABLE_COST_WARNINGS": "0" }}Project-Level Configuration
Section titled “Project-Level Configuration”Create .claude/settings.json for team-shared settings:
{ "permissions": { "allow": [ "Edit(src/**)", "Bash(npm run:*)", "Bash(git diff:*)", "mcp__github__*" ], "deny": [ "Edit(*.env)", "Bash(rm -rf:*)" ], "additionalDirectories": ["../shared-lib"] }, "env": { "NODE_ENV": "development" }, "hooks": { "PostToolUse": { "Edit": "prettier --write $CLAUDE_FILE_PATHS" } }}IDE Integration Settings
Section titled “IDE Integration Settings”{ "claude-code.autoLaunch": true, "claude-code.defaultMode": "acceptEdits", "claude-code.theme": "dark"}<component name="ClaudeCodeSettings"> <option name="autoLaunch" value="true" /> <option name="defaultMode" value="acceptEdits" /></component>Terminal Configuration
Section titled “Terminal Configuration”Optimize your terminal for Claude Code:
- Run
/terminal-setupto configure key bindings - Enable Shift+Enter for multiline input
- Configure notification preferences:
Terminal window claude config set -g preferredNotifChannel iterm2_with_bell
Memory Configuration (CLAUDE.md)
Section titled “Memory Configuration (CLAUDE.md)”Configure persistent memory across sessions:
## Build Commands- npm run build: Production build- npm run dev: Development server- npm test: Run test suite- npm run typecheck: TypeScript validation
## Code Style- Use functional components with TypeScript- Prefer composition over inheritance- Always handle error cases explicitly
## Architecture- Frontend: Next.js with App Router- API: tRPC with Zod validation- Database: PostgreSQL with Drizzle ORMMemory File Imports
Section titled “Memory File Imports”# Project-specific settings@docs/conventions.md@~/.claude/personal-preferences.md
# Team member preferences (not in git)@~/.claude/team-configs.mdMCP Server Configuration
Section titled “MCP Server Configuration”Enable powerful integrations through MCP:
{ "mcpServers": { "github": { "command": "npx", "args": ["-y", "@modelcontextprotocol/server-github"], "env": { "GITHUB_TOKEN": "${GITHUB_TOKEN}" } }, "postgres": { "command": "npx", "args": [ "-y", "@modelcontextprotocol/server-postgres", "postgresql://localhost/mydb" ] } }}Enable MCP servers:
# Interactive setupclaude mcp add
# Allow specific serversclaude config set enabledMcpjsonServers '["github", "postgres"]'Advanced Hook Configuration
Section titled “Advanced Hook Configuration”Automate workflows with hooks:
{ "hooks": { "PreToolUse": { "Edit": { "type": "command", "command": "echo 'Editing: $CLAUDE_FILE_PATHS'" } }, "PostToolUse": { "Edit": { "type": "command", "command": "npm run lint --fix $CLAUDE_FILE_PATHS" }, "Bash": { "type": "command", "command": "[[ \"$CLAUDE_TOOL_INPUT\" =~ test ]] && echo 'Tests complete!'" } } }}Environment Variables
Section titled “Environment Variables”Key environment variables for fine-tuning:
# Model configurationexport ANTHROPIC_MODEL='claude-opus-4'export ANTHROPIC_SMALL_FAST_MODEL='claude-3-5-haiku'
# Performance tuningexport CLAUDE_CODE_MAX_OUTPUT_TOKENS=8192export MAX_THINKING_TOKENS=50000
# Cost optimizationexport DISABLE_NON_ESSENTIAL_MODEL_CALLS=1
# Securityexport CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC=1Custom Slash Commands
Section titled “Custom Slash Commands”Create reusable workflows:
Analyze this code for performance bottlenecks:- Profile execution time- Identify N+1 queries- Check for unnecessary re-renders- Suggest optimizations
Target: $ARGUMENTSUsage:
/optimize src/components/Dashboard.tsxSecurity Configuration
Section titled “Security Configuration”Performance Optimization
Section titled “Performance Optimization”Token Usage
- Use
/clearfrequently - Enable auto-compact
- Focus queries on specific modules
Model Selection
- Sonnet 4 for routine tasks
- Opus 4 for complex reasoning
- Monitor with
/costcommand
Quick Reference
Section titled “Quick Reference”Essential Commands
Section titled “Essential Commands”/config # Configuration menu/permissions # Manage allowed tools/model # Switch models/clear # Clear context/cost # Check token usageCommon Configurations
Section titled “Common Configurations”High-Speed Development:
claude --dangerously-skip-permissions --model sonnetSecure Review Mode:
claude --permission-mode plan --model opusCost-Conscious Setup:
{ "model": "claude-sonnet-4", "env": { "DISABLE_NON_ESSENTIAL_MODEL_CALLS": "1" }}Next Steps
Section titled “Next Steps”- Set up project initialization with CLAUDE.md
- Configure MCP servers for extended capabilities
- Learn about deep reasoning modes for complex tasks