{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 啃猪蹄的小仙女 的问题《where to put secure passwords/keys in a rails app?》','https://www.manongdao.com/q-1341923.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have a few web services that require secure tokens/keys/passwords to be passed in. Where should I define these secure values for my rails app to see? I want the development keys in version control, but don't want the production keys in version control. How should I set this up? I'm new to rails.
相关问题
- Question marks after images and js/css files in ra
- Using :remote => true with hover event
- “Zero out” sensitive String data in Swift
- Eager-loading association count with Arel (Rails 3
- High cost encryption but less cost decryption
相关文章
- Warning : HTML 1300 Navigation occured?
- Right way to deploy Rails + Puma + Postgres app to
- AWS S3 in rails - how to set the s3_signature_vers
- how to call a active record named scope with a str
- How to add a JSON column in MySQL with Rails 5 Mig
- “No explicit conversion of Symbol into String” for
- form_for wrong number of arguments in rails 4
- Rspec controller error expecting <“index”> but
apneadiving is right, symlinking the files is a good idea. Another approach is to put the keys in the shell variables, accessible only to the user that runs the app. Then, in your rails app you'll have
You see the question properly.
Put your
passwordsandkeysin some yml file excluded from version control.Then on your production server, create the very same file and symlink your app to it every time you deploy.
EDIT.
Capistrano is almost made to fits these needs:
put your
ymlfiles in thesharedfolderIn your capistrano
deploy.rbfile:to work with yml files: http://railscasts.com/episodes/85-yaml-configuration-file
As of Rails 4.1.0, check out secrets.yml.