This gem aimed to add sanitizing support to sentry-ruby gem.
sentry-raven gem had this apportunity but it is no longer supported. Moving from sentry-raven to sentry-ruby can surprise you with missing this ability. But you can still use sentry-sanitizer (with a little change to configuration).
Currently this gem provides following features
- Sanitizing POST params
- Sanitizing HTTP headers
- Sanitizing cookies
- Sanitizing query string
- Sanitizing extras (see
Sentry.set_extras) - Sanitizing breadcrumb data fields
Add this line to your application's Gemfile:
gem 'sentry-sanitizer', '>= 0.2.0'And then execute:
$ bundle
Or install it yourself as:
$ gem install sentry-sanitizer
Add following lines to your Sentry configuration:
Sentry.init do |config|
# ... your configuration
# If using Rails
config.sanitize.fields = Rails.application.config.filter_parameters
# You can also pass custom array
config.sanitize.fields = %w[password super_secret_token]
# HTTP headers can be sanitized too (it is case insensitive)
config.sanitize.http_headers = %w[Authorization X-Xsrf-Token]
# You can sanitize all HTTP headers with setting `true` value
config.sanitize.http_headers = true
# You can sanitize all cookies with this setting
config.sanitize.cookies = true
# You can sanitize query string params for GET requests
config.sanitize.query_string = true
# Sanitize breadcrumbs data[:body] payload (Setry::Net:HTTP)
config.sanitize.breadcrumbs.json_data_fields = [:body]
# ...
endInstall dependencies
$ bin/setup
Experiment with the code in IRB
$ bin/console
Run tests
$ bin/rake test
Bug reports and pull requests are welcome on GitHub at https://github.com/mrexox/sentry-sanitizer/issues.
The gem is available as open source under the terms of the BSD-3-Clause License.