Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
bgentry
on Dec 26, 2012
|
parent
|
context
|
favorite
| on:
Reminder: secret_token.rb is named so for a reason
As hgimenez said, the best way is to not store your secrets in your source tree at all (12factor.net style). Keep them in the environment. Here's a great example:
https://github.com/democrats/voter-registration/commit/2fa87...
nodata
on Dec 26, 2012
[–]
Is that a good example? It doesn't warn if the env isn't set.
bgentry
on Dec 27, 2012
|
parent
[–]
No, it doesn't warn, it raises an error and prevents the application from booting:
https://github.com/democrats/voter-registration/commit/2fa87...
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
https://github.com/democrats/voter-registration/commit/2fa87...