提交 d74fecac 编辑于 7 years ago 作者: Stan Hu

Filter additional secrets from Rails logs

Upon inspection of logs, there were a number of fields not filtered. For example:

* authenticity_token: CSRF token
* rss_token: Used for RSS feeds
* secret: Used with Projects::UploadController

Rails provides a way to match regexps, so we now filter:

* Any parameter ending with `_token`
* Any parameter containing `password`
* Any parameter containing `secret`

上级 172cb70d

No related branches found

No related tags found

隐藏空白变更内容

行内左右并排

显示有 9 个添加和 11 个删除

想要评论请注册或