diff --git a/lib/devise/parameter_sanitizer.rb b/lib/devise/parameter_sanitizer.rb
index aa78b21f..0a6f3d4b 100644
--- a/lib/devise/parameter_sanitizer.rb
+++ b/lib/devise/parameter_sanitizer.rb
@@ -45,7 +45,7 @@ module Devise
     # here allows us to construct a new user without sensitive information if
     # authentication fails.
     def sign_in
-      default_params.permit(*auth_keys + [:password])
+      default_params.permit(*auth_keys + [:password, :remember_me])
     end
 
     def sign_up
diff --git a/test/parameter_sanitizer_test.rb b/test/parameter_sanitizer_test.rb
index 34f58392..244d515e 100644
--- a/test/parameter_sanitizer_test.rb
+++ b/test/parameter_sanitizer_test.rb
@@ -21,8 +21,8 @@ if defined?(ActionController::StrongParameters)
     end
 
     test 'filters some parameters on sign in by default' do
-      sanitizer = sanitizer(user: { "email" => "jose", "password" => "invalid" })
-      assert_equal({ "email" => "jose", "password" => "invalid" }, sanitizer.for(:sign_in))
+      sanitizer = sanitizer(user: { "email" => "jose", "password" => "invalid", "remember_me" => "1" })
+      assert_equal({ "email" => "jose", "password" => "invalid", "remember_me" => "1" }, sanitizer.for(:sign_in))
     end
 
     test 'handles auth keys as a hash' do