This project is archived and is in readonly mode.

#4335 ✓resolved
David Chelimsky

config.filter_parameters doesn't effect in-browser request dump

Reported by David Chelimsky | April 6th, 2010 @ 10:28 PM


I've got config.filter_parameters << :password in config/application.rb. It filters the password in the logs, as expected, however, it quite unexpectedly shows all of my colleagues my password in the browser:



{"commit"=>"Sign in",

Comments and changes to this ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

<h2 style="font-size: 14px">Tickets have moved to Github</h2>

The new ticket tracker is available at <a href=""></a>

People watching this ticket

Referenced by