From 5023f381b5d24d3deadd8c92f48d6aa3eca737c0 Mon Sep 17 00:00:00 2001
From: Rebecca Le <543859+sevenseacat@users.noreply.github.com>
Date: Mon, 26 Feb 2024 09:52:21 +0800
Subject: [PATCH] docs: Mark the `hashed_password` field as private so it does
 not appear in any API responses

As the API extensions grab all public attributes by default - this is one that really should not be included!
---
 documentation/tutorials/getting-started-with-authentication.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/documentation/tutorials/getting-started-with-authentication.md b/documentation/tutorials/getting-started-with-authentication.md
index 982be56..b8a6145 100644
--- a/documentation/tutorials/getting-started-with-authentication.md
+++ b/documentation/tutorials/getting-started-with-authentication.md
@@ -174,7 +174,7 @@ defmodule MyApp.Accounts.User do
   attributes do
     uuid_primary_key :id
     attribute :email, :ci_string, allow_nil?: false
-    attribute :hashed_password, :string, allow_nil?: false, sensitive?: true
+    attribute :hashed_password, :string, allow_nil?: false, sensitive?: true, private?: true
   end
 
   authentication do