Sanitize params when using plugin `error_mail`

Question

Sanitize params when using plugin `error_mail`

Closed this issue 8 months ago · 2 comments

I'd like to use the error_mail plugin and I see that it includes the parameters of the request. This is usually fine but can become problematic if the params contain passwords.

What is the preferred way to sanitize the params? Just doing it myself and deleting the problematic entries from params?

Answer 1 · 2024-01-04T15:34:21.000Z

I think it would be best to build this into the plugin as an option. We'd want to handle the environment and session values as well, since they could potentially also need sanitization. I'll work on that before the next release.

Answer 2 · 2024-01-04T21:33:35.000Z

This works great, thank you!