Add common sensitive names to generated filter parameters

These added names are distilled from the filter_parameters config of a number of open source Rails applications.
author: Eliot Sykes <eliotsykes@gmail.com> 2018-11-20 08:10:00 +0000
committer: Eliot Sykes <eliotsykes@gmail.com> 2018-11-20 08:12:52 +0000
commit: 62570a8016f9f74e07384ae4f7403ea5b2ced72f (patch)
tree: db863569a498156576282b7afcf9b22c56f956ae /railties
parent: 3274d5a0930fbf57cbf4a11abfdd4f4cd7483e8d (diff)
download: rails-62570a8016f9f74e07384ae4f7403ea5b2ced72f.tar.gz
rails-62570a8016f9f74e07384ae4f7403ea5b2ced72f.tar.bz2
rails-62570a8016f9f74e07384ae4f7403ea5b2ced72f.zip
1 files changed, 3 insertions, 1 deletions
diff --git a/railties/lib/rails/generators/rails/app/templates/config/initializers/filter_parameter_logging.rb.tt b/railties/lib/rails/generators/rails/app/templates/config/initializers/filter_parameter_logging.rb.tt
index a7d12514e6..eea99edb65 100644
--- a/railties/lib/rails/generators/rails/app/templates/config/initializers/filter_parameter_logging.rb.tt
+++ b/railties/lib/rails/generators/rails/app/templates/config/initializers/filter_parameter_logging.rb.tt
@@ -1,4 +1,6 @@
 # Be sure to restart your server when you modify this file.
 
 # Configure sensitive parameters which will be filtered from the log file.
-Rails.application.config.filter_parameters += [:password, :secret]
+Rails.application.config.filter_parameters += [
+  :password, :secret, :token, :_key, :auth, :crypt, :salt, :certificate, :otp, :access, :private, :protected, :ssn
+]
author	Eliot Sykes <eliotsykes@gmail.com>	2018-11-20 08:10:00 +0000
committer	Eliot Sykes <eliotsykes@gmail.com>	2018-11-20 08:12:52 +0000
commit	62570a8016f9f74e07384ae4f7403ea5b2ced72f (patch)
tree	db863569a498156576282b7afcf9b22c56f956ae /railties
parent	3274d5a0930fbf57cbf4a11abfdd4f4cd7483e8d (diff)
download	rails-62570a8016f9f74e07384ae4f7403ea5b2ced72f.tar.gz rails-62570a8016f9f74e07384ae4f7403ea5b2ced72f.tar.bz2 rails-62570a8016f9f74e07384ae4f7403ea5b2ced72f.zip