dkam/clinch
1
0
Fork 0
Code Issues 7 Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
cd862c7cd75857a11b11a6c526bbb1ec8521212a
clinch/config/initializers
History
Dan Milne cd862c7cd7 Filter code params from logs (TOTP, backup, OAuth code, PKCE) 
The TOTP and backup-code form field is named `code`, which was not covered by
the filter list, so live one-time codes landed in production logs. Adding :code
(partial match) also redacts the OAuth authorization `code` and PKCE
`code_verifier`/`code_challenge`.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
2026-06-11 20:21:41 +10:00
..
active_record_encryption.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00
active_storage.rb
Add Icons for apps
2025-11-25 19:11:22 +11:00
assets.rb
First commit
2025-10-23 16:19:56 +11:00
clinch_host.rb
Require CLINCH_HOST in deployed environments; drop request-host fallback
2026-06-11 08:04:42 +10:00
content_security_policy.rb
Harden OIDC, add SVG sanitization, improve form UX and security defaults
2026-04-06 21:06:51 +10:00
csp_local_logger.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00
filter_parameter_logging.rb
Filter code params from logs (TOTP, backup, OAuth code, PKCE)
2026-06-11 20:21:41 +10:00
forward_auth_cache.rb
Add rate limiting and in-memory caching for forward auth endpoint
2026-03-07 11:15:54 +11:00
inflections.rb
First commit
2025-10-23 16:19:56 +11:00
permissions_policy.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00
sentry_subscriber.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00
sentry.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00
token_hmac.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00
version.rb
Apps index access column + summary + admin access checker
2026-06-07 18:38:56 +10:00
webauthn.rb
StandardRB fixes
2026-01-01 13:29:44 +11:00