ref(tracing): Only add user_id to DSC if sendDefaultPii is true
#5344
add and adjust unit and integration tests
revert unintended yarn script deletion
- Loading branch information
commit 841e236361707dda0e4d2bf2c2252484e549cb3a
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,17 @@ | ||
| import * as Sentry from '@sentry/browser'; | ||
| import { Integrations } from '@sentry/tracing'; | ||
|
|
||
| window.Sentry = Sentry; | ||
|
|
||
| Sentry.init({ | ||
| dsn: 'https://[email protected]/1337', | ||
| integrations: [new Integrations.BrowserTracing({ tracingOrigins: [/.*/] })], | ||
| environment: 'production', | ||
| tracesSampleRate: 1, | ||
| debug: true, | ||
| }); | ||
|
|
||
| Sentry.configureScope(scope => { | ||
| scope.setUser({ id: 'user123', segment: 'segmentB' }); | ||
| scope.setTransactionName('testTransactionDSC'); | ||
| }); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,24 @@ | ||
| import { expect } from '@playwright/test'; | ||
| import { EventEnvelopeHeaders } from '@sentry/types'; | ||
|
|
||
| import { sentryTest } from '../../../utils/fixtures'; | ||
| import { envelopeHeaderRequestParser, getFirstSentryEnvelopeRequest } from '../../../utils/helpers'; | ||
|
|
||
| sentryTest( | ||
| 'should not send user_id in DSC data in trace envelope header if sendDefaultPii option is not set', | ||
| async ({ getLocalTestPath, page }) => { | ||
| const url = await getLocalTestPath({ testDir: __dirname }); | ||
|
|
||
| const envHeader = await getFirstSentryEnvelopeRequest<EventEnvelopeHeaders>(page, url, envelopeHeaderRequestParser); | ||
|
|
||
| expect(envHeader.trace).toBeDefined(); | ||
| expect(envHeader.trace).toEqual({ | ||
| environment: 'production', | ||
| transaction: expect.stringContaining('index.html'), | ||
| user_segment: 'segmentB', | ||
| sample_rate: '1', | ||
| trace_id: expect.any(String), | ||
| public_key: 'public', | ||
| }); | ||
| }, | ||
| ); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,39 @@ | ||
| import * as Sentry from '@sentry/node'; | ||
| import * as Tracing from '@sentry/tracing'; | ||
| import cors from 'cors'; | ||
| import express from 'express'; | ||
| import http from 'http'; | ||
|
|
||
| const app = express(); | ||
|
|
||
| export type TestAPIResponse = { test_data: { host: string; 'sentry-trace': string; baggage: string } }; | ||
|
|
||
| Sentry.init({ | ||
| dsn: 'https://[email protected]/1337', | ||
| release: '1.0', | ||
| environment: 'prod', | ||
| integrations: [new Sentry.Integrations.Http({ tracing: true }), new Tracing.Integrations.Express({ app })], | ||
| tracesSampleRate: 1.0, | ||
| }); | ||
|
|
||
| Sentry.setUser({ id: 'user123', segment: 'SegmentA' }); | ||
|
|
||
| app.use(Sentry.Handlers.requestHandler()); | ||
| app.use(Sentry.Handlers.tracingHandler()); | ||
|
|
||
| app.use(cors()); | ||
|
|
||
| app.get('/test/express', (_req, res) => { | ||
| const transaction = Sentry.getCurrentHub().getScope()?.getTransaction(); | ||
| if (transaction) { | ||
| transaction.traceId = '86f39e84263a4de99c326acab3bfe3bd'; | ||
| } | ||
| const headers = http.get('http://somewhere.not.sentry/').getHeaders(); | ||
|
|
||
| // Responding with the headers outgoing request headers back to the assertions. | ||
| res.send({ test_data: headers }); | ||
| }); | ||
|
|
||
| app.use(Sentry.Handlers.errorHandler()); | ||
|
|
||
| export default app; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,40 @@ | ||
| import * as Sentry from '@sentry/node'; | ||
| import * as Tracing from '@sentry/tracing'; | ||
| import cors from 'cors'; | ||
| import express from 'express'; | ||
| import http from 'http'; | ||
|
|
||
| const app = express(); | ||
|
|
||
| export type TestAPIResponse = { test_data: { host: string; 'sentry-trace': string; baggage: string } }; | ||
|
|
||
| Sentry.init({ | ||
| dsn: 'https://[email protected]/1337', | ||
| release: '1.0', | ||
| environment: 'prod', | ||
| integrations: [new Sentry.Integrations.Http({ tracing: true }), new Tracing.Integrations.Express({ app })], | ||
| tracesSampleRate: 1.0, | ||
| sendDefaultPii: true, | ||
| }); | ||
|
|
||
| Sentry.setUser({ id: 'user123', segment: 'SegmentA' }); | ||
|
|
||
| app.use(Sentry.Handlers.requestHandler()); | ||
| app.use(Sentry.Handlers.tracingHandler()); | ||
|
|
||
| app.use(cors()); | ||
|
|
||
| app.get('/test/express', (_req, res) => { | ||
| const transaction = Sentry.getCurrentHub().getScope()?.getTransaction(); | ||
| if (transaction) { | ||
| transaction.traceId = '86f39e84263a4de99c326acab3bfe3bd'; | ||
| } | ||
| const headers = http.get('http://somewhere.not.sentry/').getHeaders(); | ||
|
|
||
| // Responding with the headers outgoing request headers back to the assertions. | ||
| res.send({ test_data: headers }); | ||
| }); | ||
|
|
||
| app.use(Sentry.Handlers.errorHandler()); | ||
|
|
||
| export default app; |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| import * as path from 'path'; | ||
|
|
||
| import { getAPIResponse, runServer } from '../../../../utils/index'; | ||
| import { TestAPIResponse } from '../server'; | ||
|
|
||
| test('Includes user_id in baggage if sendDefaultPii is set to true', async () => { | ||
| const url = await runServer(__dirname, `${path.resolve(__dirname, '.')}/server.ts`); | ||
|
|
||
| const response = (await getAPIResponse(new URL(`${url}/express`))) as TestAPIResponse; | ||
|
|
||
| expect(response).toBeDefined(); | ||
| expect(response).toMatchObject({ | ||
| test_data: { | ||
| host: 'somewhere.not.sentry', | ||
| baggage: expect.stringContaining('sentry-user_id=user123'), | ||
| }, | ||
| }); | ||
| }); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -16,13 +16,14 @@ import { getDefaultNodeClientOptions } from '../helper/node-client-options'; | |
| const NODE_VERSION = parseSemver(process.versions.node); | ||
|
|
||
| describe('tracing', () => { | ||
| function createTransactionOnScope(sendDefaultPii: boolean = true) { | ||
| const options = getDefaultNodeClientOptions({ | ||
| dsn: 'https://[email protected]/12312012', | ||
| tracesSampleRate: 1.0, | ||
| integrations: [new HttpIntegration({ tracing: true })], | ||
| release: '1.0.0', | ||
| environment: 'production', | ||
| sendDefaultPii, | ||
| }); | ||
| const hub = new Hub(new NodeClient(options)); | ||
| addExtensionMethods(); | ||
|
|
@@ -133,6 +134,23 @@ describe('tracing', () => { | |
| ); | ||
| }); | ||
|
|
||
| it('does not add the user_id to the baggage header if sendDefaultPii is set to false', async () => { | ||
| nock('http://dogs.are.great').get('/').reply(200); | ||
|
|
||
| createTransactionOnScope(false); | ||
|
There was a problem hiding this comment. Just seeing this in tests is so glorius. |
||
|
|
||
| const request = http.get({ host: 'http://dogs.are.great/', headers: { baggage: 'dog=great' } }); | ||
| const baggageHeader = request.getHeader('baggage') as string; | ||
|
|
||
| expect(baggageHeader).toBeDefined(); | ||
| expect(typeof baggageHeader).toEqual('string'); | ||
| expect(baggageHeader).toEqual( | ||
| 'dog=great,sentry-environment=production,sentry-release=1.0.0,sentry-transaction=dogpark,' + | ||
| 'sentry-user_segment=segmentA,sentry-public_key=dogsarebadatkeepingsecrets,' + | ||
| 'sentry-trace_id=12312012123120121231201212312012,sentry-sample_rate=1', | ||
| ); | ||
| }); | ||
|
|
||
| it("doesn't attach the sentry-trace header to outgoing sentry requests", () => { | ||
| nock('http://squirrelchasers.ingest.sentry.io').get('/api/12312012/store/').reply(200); | ||
|
|
||
|
|
||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
(optional) We could refactor this a bit so that
createTransactionOnScopetakes node client options as an argument which override a default (default being what's there now).There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, good idea; that seems like a more sustainable solution
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
0241a8e