Project

encrypted_parameter_filter

0.0
The project is in a healthy, maintained state
encrypted_parameter_filterjosephbhunt/encrypted_parameter_filterHomepageDocumentationSource CodeBug TrackerWiki
Request parameters can't be encrypted by default in ActiveSupport::Parameter filter. This gem allows you to encrypt parameters in logs.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
236
Stars
1
Forks
0
Watchers
1
 Releases
Current version
0.1.1
Total releases
2
First release
2025-07-07
Latest release
2025-07-07
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2025-07-11
Reverse Dependencies
0

 Dependencies

Development

minitest
~> 5.16
rake
~> 13.0
rubocop-rails-omakase
~> 1.1

Runtime

rails
~> 7.0, >= 7.0.0
 Project Readme

EncryptedParameterFilter

Encrypted Parameter Filter provides and easy way to encrypt parameters in your Rails logs and decrypt them later when needed.

Why use this?

You may need this if you wish to protect sensitive information that you wish to recover later. Not all applications and APIs store all the data that they receive. While ActiveRecord Encryption works fine for encrypted values before storing them in the database, this gem focuses on protecting data in your logs.

Installation

Install the gem and add to the application's Gemfile by executing:

bundle add encrypted_parameter_filter

If bundler is not being used to manage dependencies, install the gem by executing:

gem install encrypted_parameter_filter

Usage

Simply add EncryptedParams.filter to your array of filtered parameters. Pass in a list of parameters to encrypt in your logs.

Example:

config/filter_parameter_logging.rb

Rails.application.config.filter_parameters += [
  :passw, :email, :secret, :token, :_key, :crypt, :salt, :certificate, :otp, :ssn, :cvv, :cvc
] + EncryptedParams.filter(:address)

This will result in logs that look this.

Parameters: {"authenticity_token"=>"[FILTERED]", "user"=>{"address"=>"[ENCRYPTED]X1XAp9X0AV6CMFmHkzM=--4He21KhLNKbV0fdT--Sy2WgrOnt7hUqsKvYWXJyQ=="}, "commit"=>"Update User", "id"=>"1"}

The params can be decrypted with the following.

in rails console

encryptor = EncryptedParams.new([])
encryptor.decrypt("[ENCRYPTED]X1XAp9X0AV6CMFmHkzM=--4He21KhLNKbV0fdT--Sy2WgrOnt7hUqsKvYWXJyQ==")

Development

After checking out the repo, run bin/setup to install dependencies. Then, run bundle exec appraisal rake to run the tests. You can also run bin/console for an interactive prompt that will allow you to experiment.

To install this gem onto your local machine, run bundle exec rake install. To release a new version, update the version number in version.rb, and then run bundle exec rake release, which will create a git tag for the version, push git commits and the created tag, and push the .gem file to rubygems.org.

Contributing

Bug reports and pull requests are welcome on GitHub at https://github.com/josephbhunt/encrypted_parameter_filter.

License

The gem is available as open source under the terms of the MIT License.