diff options
| author | Douwe Maan <douwe@gitlab.com> | 2016-12-06 01:05:06 +0000 |
|---|---|---|
| committer | Alejandro Rodriguez <alejandro@gitlab.com> | 2016-12-07 19:23:18 +0000 |
| commit | 07217fb197b8e93d203467203dc5e1afa96b5363 (patch) | |
| tree | 9d5f8a0d6cd8cd852bc4e71c17c3ab5789f66dd3 | |
| parent | ab95492b1f628785da47cd4c2975b33513957cc7 (diff) | |
| download | gitlab-ce-07217fb197b8e93d203467203dc5e1afa96b5363.tar.gz | |
Merge branch 'rs-filter-authentication_token' into 'security'
Add authentication_token to filter_parameters list
See merge request !2041
| -rw-r--r-- | config/application.rb | 3 | ||||
| -rw-r--r-- | config/initializers/sentry.rb | 2 |
2 files changed, 3 insertions, 2 deletions
diff --git a/config/application.rb b/config/application.rb index fb84870dfbd..0aa2873f94a 100644 --- a/config/application.rb +++ b/config/application.rb @@ -45,7 +45,7 @@ module Gitlab # # Parameters filtered: # - Password (:password, :password_confirmation) - # - Private tokens (:private_token) + # - Private tokens (:private_token, :authentication_token) # - Two-factor tokens (:otp_attempt) # - Repo/Project Import URLs (:import_url) # - Build variables (:variables) @@ -55,6 +55,7 @@ module Gitlab # - Sentry DSN (:sentry_dsn) # - Deploy keys (:key) config.filter_parameters += %i( + authentication_token certificate encrypted_key hook diff --git a/config/initializers/sentry.rb b/config/initializers/sentry.rb index 4f30d1265c8..6b0cff75653 100644 --- a/config/initializers/sentry.rb +++ b/config/initializers/sentry.rb @@ -15,7 +15,7 @@ if Rails.env.production? Raven.configure do |config| config.dsn = current_application_settings.sentry_dsn config.release = Gitlab::REVISION - + # Sanitize fields based on those sanitized from Rails. config.sanitize_fields = Rails.application.config.filter_parameters.map(&:to_s) # Sanitize authentication headers |