David Kimura PRO
Joined 7/18/2015
Drifting Ruby Owner
Ruby Rogues Panelist
David Kimura PRO said almost 6 years ago on Encrypted Credentials in Rails 5.2 :
In this situation, the developers must have access to the master key which would expose production secrets to more people than necessary. This of course depends on the layout of the R&D team. If it is a solo developer working on a personal project then the exposure is obviously limited. However, in a larger setting, often the developers will not have access nor the secrets to the production environment.

David Kimura PRO said over 5 years ago on Rails API App - Authentication with JSON Web Tokens :
I have been considering to do something like this even though it is outside of the scope of Ruby. What are peoples' thoughts? Android or iOS example?

David Kimura PRO said over 5 years ago on Observer Patterns :
very good point

David Kimura PRO said over 5 years ago on Rails API App - Authentication with JSON Web Tokens :
See if this episode helps out. It uses `devise` and the `knock` gem for JWT authentication. https://www.driftingruby.com/episodes/rails-api-authentication-with-jwt

David Kimura PRO said over 5 years ago on Rails API App - Authentication with JSON Web Tokens :
It looks like the cURL request may be malformed as it is setting the parameter's key as the full hash and the [FILTERED] part is the value.