RailsCasts Pro episodes are now free!

Learn more or hide this

Filtering Sensitive Logs

#9 Filtering Sensitive Logs

Mar 23, 2007 | 2 minutes | Security
Are you accepting sensitive user data? Passwords, credit card numbers, etc. By default, Rails stores all submitted parameters in plain text in the logs. This episode will show you how to filter this sensitive input so it doesn't show up in the log file.
Click to Play Video ▶
  • Download:
  • mp4Full Size H.264 Video (4.71 MB)
  • m4vSmaller H.264 Video (3.38 MB)
  • webmFull Size VP8 Video (8.27 MB)
  • ogvFull Size Theora Video (7.96 MB)
controllers/application.rb 
filter_parameter_logging "password"