On Monday, March 25, 2019 at 10:57:00 AM UTC-7, zm wrote: > > The error tickets created by the framework are great for debugging, > however depending on where a failure can include, they can include very > sensitive information like user ID + password combinations. > > Is it possible to filter certain fields out of the tickets such as user > name / password? It seems like snapshot could be updated to include some > sort of filter. >
The tickets are only visible (out of the box, at least) to the Admin account. Exposing passwords to the Admin account has become a no-no, but even without them the Admin can reset the password or disable the account. The purpose of the tickets is to allow programming errors to be corrected, and every once in a while the error is password-related. Take your choice. Is there other information in the ticket that should be filtered? /dps -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
