From 8d1fa44f2327f88d00bee6d51da96291a73188a1 Mon Sep 17 00:00:00 2001
From: Douwe Maan <douwe@gitlab.com>
Date: Fri, 6 Feb 2015 22:55:43 +0100
Subject: Filter private_token and password_confirmation params from logs.

Closes #1770.
---
 config/application.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'config')

diff --git a/config/application.rb b/config/application.rb
index 24ba219cf3a..bd4578848c5 100644
--- a/config/application.rb
+++ b/config/application.rb
@@ -31,7 +31,7 @@ module Gitlab
     config.encoding = "utf-8"
 
     # Configure sensitive parameters which will be filtered from the log file.
-    config.filter_parameters.push(*[:password])
+    config.filter_parameters.push(:password, :password_confirmation, :private_token)
 
     # Enable escaping HTML in JSON.
     config.active_support.escape_html_entities_in_json = true
-- 
cgit v1.2.3