I'm trying to filter the password from merb log.
Since MerbAuthSlicePassword::Sessions doesn't inherit from my app
Application controller, I add the following to class
MerbAuthSlicePassword::Sessions in slices/merb-auth/app/controller/
sessions.rb as follows:
class MerbAuthSlicePassword::Sessions <
MerbAuthSlicePassword::Application
log_params_filtered :password
...
end
Now my merb log shows the two lines:
merb : worker (port 4000) ~ Routed to: {"Submit"=>"Log In",
"action"=>"update", "_method"=>"put",
"controller"=>"merb_auth_slice_password/sessions",
"password"=>"my_cleartext_password",
"email"=>"[EMAIL PROTECTED]"}
merb : worker (port 4000) ~ Params: {"Submit"=>"Log In",
"_method"=>"put", "action"=>"update",
"controller"=>"merb_auth_slice_password/sessions",
"password"=>"[FILTERED]", "email"=>"[EMAIL PROTECTED]"}
Notice the first log output ("~ Routed to:") shows the password and
the second output (the "~ Params:") properly filters.
This doesn't appear to be a bug in the slice but in merb or the
logging.
Have I done something wrong or this a bug? This is in development
mode with logging to console as is configured by a default "merb-gen
app" structure.
thanks, Jon
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"merb" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at http://groups.google.com/group/merb?hl=en
-~----------~----~----~----~------~----~------~--~---
