I came across the Filtering Sensitive Logs Railscast the other day and Ryan explains how to filter out password information out of your development and production log files, something i needed to do for my site.
He uses a simple application with only one password field, where I am using acts as authenticated which uses an additional parameter for password confirmation.
So just edit the application controller by adding this somewhere near the end.
filter_parameter_logging :password, :password_confirmationThat takes care of the signup form password from being logged.
0 responses so far ↓
There are no comments yet...Kick things off by filling out the form below.
Leave a Comment